Disable SSLv3 on Nagios XI
-
sandeepatil
- Posts: 211
- Joined: Tue Dec 27, 2016 3:12 am
Disable SSLv3 on Nagios XI
How disable SSLv3 on Nagios XI and enable TLSv1.1/TLSv1.2
Re: Disable SSLv3 on Nagios XI
You can control which protocols are allowed to connect to XI's interface by editing /etc/httpd/conf.d/ssl.conf. Disable SSLv2 and v3 for example with the line:
SSLProtocol all -SSLv2 -SSLv3
SSLProtocol all -SSLv2 -SSLv3
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
-
sandeepatil
- Posts: 211
- Joined: Tue Dec 27, 2016 3:12 am
Re: Disable SSLv3 on Nagios XI
Suggested configuration tested, but not working.
Please find below output :
Please find below output :
# openssl ciphers -v | awk '{print $2}' | sort | uniq
SSLv3
TLSv1.2
Re: Disable SSLv3 on Nagios XI
All that tells you is that openssl has some SSLv3 based ciphers available to it. It's not indicative of what protocols/services are accepting which ciphers.
I guess I'm a bit confused as to what exactly you're looking to accomplish? You could recompile openssl without SSLv2 or SSLv3 support, but frankly that's not something anyone on this forum should be assisting you with as it's well outside the scope of Nagios related things.
I guess I'm a bit confused as to what exactly you're looking to accomplish? You could recompile openssl without SSLv2 or SSLv3 support, but frankly that's not something anyone on this forum should be assisting you with as it's well outside the scope of Nagios related things.
Former Nagios employee
https://www.mcapra.com/
https://www.mcapra.com/
Re: Disable SSLv3 on Nagios XI
Thanks for the input, @mcapra!
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
-
sandeepatil
- Posts: 211
- Joined: Tue Dec 27, 2016 3:12 am
Re: Disable SSLv3 on Nagios XI
We found disable option in ssl.conf.
Please close this thread.
Please close this thread.