Skip to content

Commit a458383

Browse files
committed
CVE­2014­3566: Avoid using SSLv3 on apache2 that runs on SSVM
Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com>
1 parent e274948 commit a458383

2 files changed

Lines changed: 2 additions & 0 deletions

File tree

tools/appliance/definitions/systemvm64template/postinstall.sh

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -215,6 +215,7 @@ configure_apache2() {
215215
# Backup stock apache configuration since we may modify it in Secondary Storage VM
216216
cp /etc/apache2/sites-available/default /etc/apache2/sites-available/default.orig
217217
cp /etc/apache2/sites-available/default-ssl /etc/apache2/sites-available/default-ssl.orig
218+
sed -i 's/SSLProtocol all -SSLv2$/SSLProtocol all -SSLv2 -SSLv3/g' /etc/apache2/mods-available/ssl.conf
218219
}
219220

220221
configure_services() {

tools/appliance/definitions/systemvmtemplate/postinstall.sh

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -205,6 +205,7 @@ configure_apache2() {
205205
# Backup stock apache configuration since we may modify it in Secondary Storage VM
206206
cp /etc/apache2/sites-available/default /etc/apache2/sites-available/default.orig
207207
cp /etc/apache2/sites-available/default-ssl /etc/apache2/sites-available/default-ssl.orig
208+
sed -i 's/SSLProtocol all -SSLv2$/SSLProtocol all -SSLv2 -SSLv3/g' /etc/apache2/mods-available/ssl.conf
208209
}
209210

210211
configure_services() {

0 commit comments

Comments
 (0)