Control PanelscPanel WHMHow ToWebHosting

[How To] Disable SSLv3 for Apache in WHM cPanel

Photo of Abhijit Sandhan Abhijit SandhanNovember 26, 2019Last Updated: November 26, 2019
1 1 minute read

After HeartBleed, Poodle (Padding Oracle On Downgraded Legacy Encryption) is another exploit recently discovered affecting SSL version3.

To disable SSL version 3 for Apache in WHM cPanel, you can follow below steps:

1) Login in WHM and go to Service Configuration > Apache Configuration > Include Editor

2) Click on the Pre Main Include and select All Versions option from the drop down box.

3) Add the following contents in the editor

SSLProtocol All -SSLv2 -SSLv3
SSLHonorCipherOrder On

apache-configuration-editor

4) Click on update and restart Apache service.

How to verify?

To verify, execute below command which checks SSL connectivity with SSL v3.

openssl s_client -connect www.example.com:443 -ssl3

where example.com is the domain name having SSL installed.

Output should be:

1847:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1086:SSL alert number 40
1847:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:530:

Tags
Photo of Abhijit Sandhan Abhijit SandhanNovember 26, 2019Last Updated: November 26, 2019
1 1 minute read
Photo of Abhijit Sandhan

Abhijit Sandhan

Love to Automate, Blog, Travel, Hike & spread Knowledge!

Related Articles

[Fixed] Template Error: The template file must be given

October 9, 2012
camtasia logo

[How To] Convert Camtasia video file Camrec to Avi/MP4

November 26, 2019

How to disable SSL on Webmin

April 7, 2013
Reliance JIO Logo

[How To] Activate Deactivate Jio Tunes Caller Tune free

November 26, 2019
Click here to view/post Comments

One Comment

Leave a Reply to abood Cancel reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

© Copyright 2024 | Geeks Terminal | All Rights Reserved  
Back to top button