stackoom
  简体   繁体   中英

Enable TLS 1.2 Apache

 原文  2020-01-16 10:18:38       apache/ tls1.2/ tls1.0

Question

I want to enable TLS 1.2 in Ubuntu server 18.

I have edited the /etc/apache2/mods-available/ssl.conf , adding

SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
SSLCipherSuite HIGH:!aNULL:!MD5:!3DES
SSLHonorCipherOrder on

but still Apache is using tls 1.0. Is it possible to activate tls 1.2?

The Apache version is Apache/2.4.29 (Ubuntu)

1 answers

solution1
 1  2020-01-16 10:58:46

To enable TLS 1.2 in Apache, you will need to change/add the SSLProtocol directive.

To do any of this, mod_ssl should be enabled, if not, use the command sudo a2enmod ssl .

SSLProtocol -all +TLSv1.2 #This makes Apache to support only TLSv1.2

You can also support TLSv1.3 if you have OpenSSL 1.1.1 or newer. You can check the OpenSSL version by running the command: openssl version .

Edit:

You will also need Apache version 2.4.36 or more to use TLSv1.3.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Fedora Configuration to enable TLS 1.2 How to Disable TLS 1.0 and 1.1 to enable only TLS 1.2 and TLS 1.3 in Apache for a Wordpress Bitnami Amazon-Ligthsail instance? Is apache CXF 3.0.10 compatible with TLS 1.2? Apache - Cannot enable TLS 1.0 or TLS 1.1 Apache using TLS1.0 even if configure with TLS1.2 Enable TLSv1.2 in apache 2.2.22 Apache 2.4.16 on Mac El Capitan: how to make it work with TLS 1.2 how to enable TLS_FALLBACK_SCSV on apache How to enable the old TLS 1.0 and TLS 1.1 on Apache on Ubuntu 20.04 Apache: Allow TLS 1.0 for one host while forcing all others to use 1.2?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM