On 27.07.09 09:02, Capstone wrote: > Specifically, will SSLCipherSuite directive take precedence over the > SSLProtocol directive? no. > If I have omitted the SSLProtocol directive entirely. But I have > something like this in my SSLCipherSuite directive, > > SSLCipherSuite TLSv1:SSLv3:+HIGH:+MEDIUM:!LOW:!NULL > > Does this not allow any SSLv2 traffic to my server? it only disbles low ciphers. I think I also disable EXPORT ciphers... -- Matus UHLAR - fantomas, uhlar@xxxxxxxxxxx ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. A day without sunshine is like, night. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|