Where can I specify the SSLProtocol directive

0

I am configuring an apache server. I enabled SSL/TLS. I want to specify the TLS versions that the server should supports. I added the following lines in the site's configurations file:

LoadModule ssl_module modules/mod_ssl.so

Listen 443
<VirtualHost *:443>
    ServerName www.example.com
    SSLEngine on
    SSLCertificateFile "/path/to/www.example.com.cert"
    SSLCertificateKeyFile "/path/to/www.example.com.key"
</VirtualHost>

Now, I need to specify the TLS versions. I found about the following directive: SSLProtocol from: Apache documentation. It is not so obvious where shall I specify this directive? in the configuration files? I do not want to mess things up so that's why I need to ask.

user6875880

Posted 2017-06-08T10:23:55.623

Reputation: 133

I think you can put it inside your VirtualHost directive. This ServerFault answer seems to imply this also: https://serverfault.com/questions/714814/enable-only-tls-1-2-connection-to-my-website

– Kinnectus – 2017-06-08T10:38:32.263

Answers

1

The docs page you linked to says:

Context: server config, virtual host

"Server config" means it's allowed in the outermost scope, i.e. where you have LoadModule and Listen. "Virtual host" means it's allowed inside a <VirtualHost> tag.

user1686

Posted 2017-06-08T10:23:55.623

Reputation: 283 655

Asked: 2017-06-08T10:23:55.623

Viewed: 327 times

Active: 2017-06-08T11:59:56.027