A
Aaron44126
Guest
I've been looking around everywhere and I haven't been able to figure this out.
I am running Plesk 10.4.4 on Ubuntu Server 10.04.4 (64-bit).
I need to disable SSLv2 for the admin panel running on port 8443.
I've looked at the official documentation (page 5) which says to add some stuff to /opt/psa/admin/conf/cipher.lst and then restart sw-cp-server. Didn't work.
I've looked at other solutions that involve maybe adding a line like this:
ssl.cipher-list = "TLSv1+HIGH !SSLv2 RC4+MEDIUM !aNULL !eNULL !3DES @STRENGTH"
to /etc/sw-cp-server/applications.d/plesk.conf, and then restart sw-cp-server. Didn't work.
How do I know it didn't work? On another machine, I run this command:
openssl s_client -connect (SERVERNAME):8443 -ssl2
It returns "CONNECTED" with no error, but it should throw an error like "13752:error:1407F0E5:SSL routines:SSL2_WRITE:ssl handshake failure:.\ssl\s2_pkt.c:430" if SSLv2 is actually disabled.
Any suggestions appreciated.
I am running Plesk 10.4.4 on Ubuntu Server 10.04.4 (64-bit).
I need to disable SSLv2 for the admin panel running on port 8443.
I've looked at the official documentation (page 5) which says to add some stuff to /opt/psa/admin/conf/cipher.lst and then restart sw-cp-server. Didn't work.
I've looked at other solutions that involve maybe adding a line like this:
ssl.cipher-list = "TLSv1+HIGH !SSLv2 RC4+MEDIUM !aNULL !eNULL !3DES @STRENGTH"
to /etc/sw-cp-server/applications.d/plesk.conf, and then restart sw-cp-server. Didn't work.
How do I know it didn't work? On another machine, I run this command:
openssl s_client -connect (SERVERNAME):8443 -ssl2
It returns "CONNECTED" with no error, but it should throw an error like "13752:error:1407F0E5:SSL routines:SSL2_WRITE:ssl handshake failure:.\ssl\s2_pkt.c:430" if SSLv2 is actually disabled.
Any suggestions appreciated.