How to Enable TLS Version in mod_ssl on Apache Webserver
By Anuket Jain On 8 July 2017 In Linux
mod_ssl combines the flexibility of Apache with the security of OpenSSL. mod_ssl is an Apache module that provides SSL v2/v3 and TLS v1 support for the Apache HTTP Server.
SSL 2.0 and SSL 3.0 having lots of known vulnerabilities like POODLE (CVE-2014-3566), that’s why latest browsers has removed supported to these vulnerable protocols.
In this article we will explain how to enable TLS Version in mod_ssl on Apache Webserver.
Install mod_ssl
Run below command to install mod_ssl.
# yum install mod_ssl
Enable TLS 1.2 Only
Edit Apache ssl configuration file on your server and add following settings.
# vim /etc/httpd/conf.d/ssl.conf
SSLProtocol -all +TLSv1.2
Enable TLS 1.1 and 1.2 Both
Same as TLS 1.2, If we want to enable both version follow as same.
# vim /etc/httpd/conf.d/ssl.conf
SSLProtocol -all +TLSv1.1 +TLSv1.2
After changes in your configuration file, restart Apache service to reflect the changes.
# service httpd restart
Enjoy it!
No Responses