This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Poodle - How to disable SSLv3

Hi,

to avoid Poodle, you can manually disable SSLv3 for WAF:


  • Open /var/chroot-reverseproxy/usr/apache/conf/httpd.conf with a text editor
  •  Edit the line 'SSLProtocol all -SSLv2':
         SSLProtocol all -SSLv2 -SSLv3

  •  Restart WAF: /var/mdw/scripts/reverseproxy restart


This is going to be fixed in 9.209.

Regards,
 Sabine


This thread was automatically locked due to age.
Parents Reply Children
  • ewadie said:

    Sorry, can't really help you. But which UTM version are you using? SSLv3 was disabled over 3 years ago with version 9.209.

     

     

    Hi ewadie,

    I have the last he last 9.505-4.. but maybe it's ok.. In the sophos shell i see write:errno=0 instead ssl3_read_bytes:sslv3 alert handshake failure as in my webserver