search for: strong_ssl_security_on_apache2

...xisting config file instead. If you?re asking for a pre-crafted config, there are bunches of them floating around: https://httpd.apache.org/docs/2.4/ssl/ssl_howto.html https://www.sslshopper.com/article-how-to-disable-weak-ciphers-and-ssl-2.0-in-apache.html https://raymii.org/s/tutorials/Strong_SSL_Security_On_Apache2.html etc. I?m also surprised by the premise implied by the question, which is that a stable OS vendor would switch HTTPS configurations for you on a point upgrade. That?s pretty much the anti-Red Hat position. If you want local breaking changes like this, you develop and test it locally, then d...

HI all, When CentOS 7 was created things like SSLv2 TLSv1 TLSv1.1 etc... were all OK, but now they have fallen out of favor for various reasons. Updating to CentOS 7.7 does not automatically disable these types of items from apache - is there a script that is available that can be ran to bring a box up to current "accepted" levels ? Or is that an edit by hand, do it yourself on all your