Impossible to disable TLSv1.1 and TLSv1.2 without disabling TLSv1
Bug #1200136 reported by
Kevin Pattison
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apache2 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
There are no configuration options supported by Ubuntu's mod_ssl that allow you to disable TLSv1.1 and 1.2. The SSLProtocol should support "-TLSv1.1" and "-TLSv1.2" but if these are used a config error is shown on Apache server restart.
Changed in apache2 (Ubuntu): | |
importance: | Undecided → Wishlist |
To post a comment you must log in.
This is a serious issue for some 12.04 LTS users and although it is resolved in later releases, shold be resolved in 12.04.