[west]

Apache
nano /etc/apache2/mods-available/ssl.conf
znajdź


# enable only secure protocols: SSLv3 and TLSv1, but not SSLv2
SSLProtocol all -SSLv2



zamień



# enable only secure protocols: but not SSLv2 and SSLv3
SSLProtocol all -SSLv2 -SSLv3



service apache2 restart


postfix


polecenia
postconf -e 'smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3'
postconf -e 'smtpd_tls_protocols=!SSLv2,!SSLv3'
postconf -e 'smtp_tls_protocols=!SSLv2,!SSLv3'


service postfix restart


Dovecot


nano /etc/dovecot/dovecot.conf


znajdź
ssl_key = </etc/postfix/smtpd.key
dodaj
ssl_protocols = !SSLv2 !SSLv3
polecenie service dovecot restart


pureftpd
nano /usr/sbin/pure-ftpd-wrapper


znajdź
'TLS' => ['-Y %d', \&parse_number_1],
dodaj
'TLSCipherSuite' => ['-J %s', \&parse_string],
polecenie:  echo 'HIGH:MEDIUM:+TLSv1:!SSLv2:!SSLv3' > /etc/pure-ftpd/conf/TLSCipherSuite


polecenie service pure-ftpd-mysql restart