On 18.03.10 13:12, Dean Weimer wrote:
> We have multiple websites using a certificate that has subject
> alternative names set to use SSL for the multiple domains. That part is
> working fine, and traffic will pass through showing with Valid
> certificates. However, I need to Disable it from answering with weak
> ciphers and SSLv2 to pass the scans.
check https_port options cipher= and options=
for the latter you can play with "openssl ciphers".
I use (not on squid), "DEFAULT:!EXP"
-- Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. I feel like I'm diagonally parked in a parallel universe.Received on Fri Mar 19 2010 - 09:18:50 MDT
This archive was generated by hypermail 2.2.0 : Fri Mar 19 2010 - 12:00:05 MDT