diff options
| author | Rob Crittenden <rcritten@redhat.com> | 2014-10-16 14:09:47 -0400 |
|---|---|---|
| committer | Rob Crittenden <rcritten@redhat.com> | 2014-10-16 16:57:31 -0400 |
| commit | 051f87219c90fd2880d432e1d3ca62c45e91209c (patch) | |
| tree | 0c0fbcc2b07e287a1f10aafdb028abae00df35a1 /docs/mod_nss.html | |
| parent | 78c17097186a8cacfb237af67fdd87599a727e88 (diff) | |
| download | mod_nss-051f87219c90fd2880d432e1d3ca62c45e91209c.tar.gz mod_nss-051f87219c90fd2880d432e1d3ca62c45e91209c.tar.xz mod_nss-051f87219c90fd2880d432e1d3ca62c45e91209c.zip | |
Don't enable SSL 3 by default
This is in response to the POODLE CVE CVE-2014-3566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
Diffstat (limited to 'docs/mod_nss.html')
| -rw-r--r-- | docs/mod_nss.html | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/docs/mod_nss.html b/docs/mod_nss.html index 4bd62c5..3d7c121 100644 --- a/docs/mod_nss.html +++ b/docs/mod_nss.html @@ -850,7 +850,7 @@ Note that this differs from mod_ssl in that you can't add or subtract protocols.<br> <br> If no NSSProtocol is specified, mod_nss will default to allowing the use of -the SSLv3, TLSv1.0, TLSv1.1 and TLSv1.2 protocols, where SSLv3 will be set to +the TLSv1.0, TLSv1.1 and TLSv1.2 protocols, where TLSv1.0 will be set to be the minimum protocol allowed, and TLSv1.2 will be set to be the maximum protocol allowed. <br> @@ -1031,7 +1031,7 @@ syntax is identical to NSSProtocol.<br> </code><br> <big><big>NSSProxyCipherSuite</big></big><br> <br> -Specifies the SSL ciphers available for proxy connections. They syntax +Specifies the SSL ciphers available for proxy connections. The syntax is identical to NSSCipherSuite.<br> <br> <span style="font-weight: bold;">Example</span><br> |