In the apache conf file, most of the time inside the SSL VirtualHost declaration, there will be a SSLCipherSuite line item similar to the following:

SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL

This needs to be chaged to:

SSLProtocol ALL -SSLv2
 SSLCipherSuite HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL

Configtest and graceful apache/httpd

Share →

Leave a Reply

Your email address will not be published. Required fields are marked *