[389-users] Permanently Disable SSLv3
John Trump
trumpjk at gmail.com
Mon Jan 5 15:18:22 UTC 2015
389-ds-base-1.2.11.25-1.el6.x86_64
idm-console-framework-1.1.7-2.el6.noarch
389-ds-console-1.2.6-1.el6.noarch
On Wed, Dec 31, 2014 at 8:49 PM, Noriko Hosoi <nhosoi at redhat.com> wrote:
> Hello,
>
> What is the versions of your server and console?
> $ rpm -q 389-ds-base idm-console-framework 389-ds-console 389-ds-admin
>
> On 12/30/2014 02:32 PM, John Trump wrote:
>
> Is there a way to permanently disable SSLv3 in directory server? If I
> modify the dse.ldif file and set nssSSL3
>
> When you made this modification, did you restart the server?
>
> to off this works until an admin goes through the gui and makes a change
> to the encryption cert and saves config. Once this happens SSLv3 is enabled
> again.
>
> If the answer to the above question is "yes", is it possible to repeat the
> operations with the audit log enabled ("nsslapd-auditlog-logging-enabled:
> on") and share the audit log (/var/log/dirsrv/slapd-YOURID/audit) with us?
> Thanks.
>
>
>
>
>
> --
> 389 users mailing list389-users at lists.fedoraproject.orghttps://admin.fedoraproject.org/mailman/listinfo/389-users
>
>
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20150105/b5ecd20a/attachment.html>
More information about the 389-users
mailing list