Re: how to upgrade httpd apache with existing SSL

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Generally you should use the newest version.
SSL3 is no longer recommended for use at all. It is disabled by default in some releases and not others.
This site has some good info about SSL cipher orders for the "most secure" setup: https://weakdh.org/sysadmin.html

- Y

On Thu, Jun 11, 2015 at 7:07 PM, Eddie Reyes <ereyes@xxxxxxxxxxxxxx> wrote:
Thank you.  Just Wanted to make sure.  Do you know what is the best version for a secure site?  or have all the SSL3 holes been fixed?

Regards,

Eduardo "Eddie" Reyes
Owner/Lead Developer
PS-Complete

On Thu, Jun 11, 2015 at 3:45 PM, Yehuda Katz <yehuda@xxxxxxxxxx> wrote:

Your SSL certificate is part of your configuration, not part of the server itself. Just make sure you don't overwrite the config files (including where ever the SSL config says that the certificate is stored) and you shouldn't lose the certificate.

Sent from a gizmo with a very small keyboard and hyperactive autocorrect.

On Jun 11, 2015 5:55 PM, "Eddie Reyes" <ereyes@xxxxxxxxxxxxxx> wrote:
Hello All,
     Is there a way to upgrade apache to the latest version WITHOUT loosing your existing SSL cert?



Regards,




[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux