Control PanelscPanel WHMHow ToWebHosting

[How To] Disable SSLv3 for Apache in WHM cPanel

Photo of Abhijit Sandhan Abhijit SandhanNovember 26, 2019Last Updated: November 26, 2019
1 1 minute read

After HeartBleed, Poodle (Padding Oracle On Downgraded Legacy Encryption) is another exploit recently discovered affecting SSL version3.

To disable SSL version 3 for Apache in WHM cPanel, you can follow below steps:

1) Login in WHM and go to Service Configuration > Apache Configuration > Include Editor

2) Click on the Pre Main Include and select All Versions option from the drop down box.

3) Add the following contents in the editor

SSLProtocol All -SSLv2 -SSLv3
SSLHonorCipherOrder On

apache-configuration-editor

4) Click on update and restart Apache service.

How to verify?

To verify, execute below command which checks SSL connectivity with SSL v3.

openssl s_client -connect www.example.com:443 -ssl3

where example.com is the domain name having SSL installed.

Output should be:

1847:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1086:SSL alert number 40
1847:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:530:

Tags
Photo of Abhijit Sandhan Abhijit SandhanNovember 26, 2019Last Updated: November 26, 2019
1 1 minute read
Photo of Abhijit Sandhan

Abhijit Sandhan

Related Articles

ubuntu logo

[How To] Empty Trash in Ubuntu from command line

November 26, 2019

How to Setup Ingress on Minikube Kubernetes with example

April 19, 2022
android

Pixel 6a fingerprint sensor issue finally fixed by Google

November 20, 2022
reliance jio logo

Activate & Deactivate call forwarding, call divert service in Jio

November 4, 2024
Click here to view/post Comments

One Comment

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

© Copyright 2024 | Geeks Terminal | All Rights Reserved  
Back to top button