disable SSL compression and session tickets in Apache
authorPeter Müller <peter.mueller@link38.eu>
Sun, 19 Nov 2017 16:24:36 +0000 (17:24 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Mon, 20 Nov 2017 15:45:52 +0000 (15:45 +0000)
commita57f4a9f5d39069032b0f4e64f90fe4330cb6357
treed0ce006ad82c96f6afff4350fd7aff2565646117
parentf574f9ea02430521fafb9f28c3a42d31b68117bb
disable SSL compression and session tickets in Apache

Ensure that Apache never uses SSL compression, which is vulnerable,
and turn off session tickets since the might cause impact to PFS.

Based against next, supersedes first version.

Reported-by: Wolfgang Apolinarski <wolfgang.apolinarski@ipfire.org>
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
config/httpd/vhosts.d/ipfire-interface-ssl.conf