SYSTEM INFORMATION
OS type and version
Ubuntu Linux 22.04.2
Virtualmin version
7.5
I am trying to disable the deprecated TLS protocols for all of my virtual hosts.
I’ve done a “grep -r” on my /etc folder and apache2.conf, ssl.conf and each vhost config file contains the following line:
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
Yet TLS checkers are showing TLSv1 and TLSv1.1 as available. For example: TLS Checker - Instant Results | CDN77.com
Are there any suggestions? Do I need to do anything with SSLCipherSuite?
Thanks
@Pixelpanther ,
Try restarting Apache via:
sudo systemctl restart apache2.serviceThen re-run the test and make sure they results from the site are not “cached”.
@tpnsolutions @ethancargio
Hi guys, thanks for your suggestions. I discovered my (silly) mistake when I noticed the IP addresses that were being checked. I run these domains through the Cloudflare proxy, so it is using their SSL config for external traffic (duh!). Luckily I can set it to require TLS1.2 or higher.
Thanks again.
system
April 21, 2023, 5:22pm
5
This topic was automatically closed 8 days after the last reply. New replies are no longer allowed.