Bug#1109839: apache2: in ssl.conf, SSLProtocol has a duplicate "all"

To: Daniel Lewart <lewart3@gmail.com>
Cc: 1109839@bugs.debian.org, Bastien Roucariès <rouca@debian.org>
Subject: Bug#1109839: apache2: in ssl.conf, SSLProtocol has a duplicate "all"
From: Vincent Lefevre <vincent@vinc17.net>
Date: Thu, 31 Jul 2025 10:37:33 +0200
Message-id: <[🔎] 20250731083733.GG2576@qaa.vinc17.org>
Reply-to: Vincent Lefevre <vincent@vinc17.net>, 1109839@bugs.debian.org
In-reply-to: <[🔎] CALE_k2EP04hTwFuPCkqPtzEXtLoUbHLJ7C+9PKoeB9QGtyuDdg@mail.gmail.com>
References: <[🔎] CALE_k2EP04hTwFuPCkqPtzEXtLoUbHLJ7C+9PKoeB9QGtyuDdg@mail.gmail.com> <[🔎] 20250724200033.GA701995@qaa.vinc17.org>

On 2025-07-31 00:00:00 -0500, Daniel Lewart wrote:
> A better patch is in Message #31 of the following:
>     #943415 - apache2: Disable TLS 1.0 and 1.1 by default:
>         https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=943415

This patch also changes SSLCipherSuite and SSLOpenSSLConfCmd,
which may be too much (unless the default is insecure).

-- 
Vincent Lefèvre <vincent@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / Pascaline project (LIP, ENS-Lyon)

Reply to:

References:
- Bug#1109839: apache2: in ssl.conf, SSLProtocol has a duplicate "all"
  - From: Daniel Lewart <lewart3@gmail.com>
- Bug#1109839: apache2: in ssl.conf, SSLProtocol has a duplicate "all"
  - From: Vincent Lefevre <vincent@vinc17.net>

Prev by Date: Bug#1109839: apache2: in ssl.conf, SSLProtocol has a duplicate "all"
Previous by thread: Bug#1109839: apache2: in ssl.conf, SSLProtocol has a duplicate "all"
Next by thread: Question about Apache2 and Debian 11
Index(es):
- Date
- Thread