Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
litespeed:wiki:disable_tls1 [2015/04/30 15:36] Serge Espitia |
litespeed:wiki:disable_tls1 [2015/07/24 15:08] Michael Alegre removed |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== How to disable TLS1.0 while enable TLS1.1 and TLS1.2 ====== | ====== How to disable TLS1.0 while enable TLS1.1 and TLS1.2 ====== | ||
| - | SSL 3.0 is considered insecure as it is vulnerable to the POODLE attack that affects all block ciphers in SSL. TLS 1.0 does include a means by which a TLS implementation can downgrade the connection to SSL 3.0, thus weakening security. | + | SSL 3.0 is considered insecure as it is vulnerable to the POODLE attack that affects all block ciphers in SSL. TLS 1.0 does include a means by which a TLS implementation could downgrade the connection to SSL 3.0, thus weakening security. |
| To disable TLS1.0 while enable TLS1.1 and TLS1.2 in an Cpanel environment, place the following in /usr/local/apache/conf/includes/pre_main_global.conf file: | To disable TLS1.0 while enable TLS1.1 and TLS1.2 in an Cpanel environment, place the following in /usr/local/apache/conf/includes/pre_main_global.conf file: | ||
| Line 45: | Line 45: | ||
| </code> | </code> | ||
| - | Actually those ports are owned by different processes and are not managed by web server. You have to configure corresponding service to disable TLS1.0 for those ports. | + | Actually, those ports are owned by different processes and are not managed by a web server. You will have to configure the corresponding service to disable TLS1.0 for those ports. |