Koozali.org: home of the SME Server
Contribs.org Forums => Koozali SME Server 10.x => Topic started by: edb on December 21, 2021, 01:17:16 AM
-
Can someone tell me how I can go about disabling TSL 1.0 & 1.1 on my SME 9.2 server?
SSL labs test gives me a B rating due to them being enabled.
Any help appreciated, oh and I can't move to v10 yet for some app comparability issues.
Thanks
-edb
-
Do you really mean TSL 1.0 and 1.1 or is it TLS?
See the following : https://www.howtouselinux.com/post/ssl-vs-tls-and-how-to-check-tls-version-in-linux
(https://www.howtouselinux.com/post/ssl-vs-tls-and-how-to-check-tls-version-in-linux)
Note that the article says SSL 1.0, 2.0 and 3.0 have been deprecated and TLS 1.0. and 1.1 have been deprecated.
That means they should not be used because they have exploitable vulnerabilities.
Cheers - and good luck. Move to SME 10 ASAP.
Ian
-
All here https://wiki.koozali.org/SSL_Settings
and - https://forums.contribs.org/index.php?topic=52120.0
-
Thank you to all for your replies.
Much appreciated.
Would anyone know how to correct this error as it is the last one I have to clean up.
This server does not support Forward Secrecy with the reference browsers. Grade capped to B.
-
yes upgrade to httpd 2.4.x.
in other words : migrate to SME 10 !
does anyone already told you so ;) ?
-
yes upgrade to httpd 2.4.x.
in other words : migrate to SME 10 !
does anyone already told you so ;) ?
Fair enough. I will just leave it as is then. Thanks again
Hope to migrate sometime soon.