I'm using Apache 2.2.4 version. i already know this version only support the sslv2, sslv3 and tlsv3. but something wired happens when i use it: when sslv2 is disable: the web browser (internet explorer in my case) use sslv3 SSL 3.0, 3DES with 168 bit encryption (High); RSA with 2048 bit exchange. when i enable the sslv2 : the web browser use tlsv1 TLS 1.0, AES with 256 bit encryption (High); RSA with 2048 bit exchange and finally when i disable both protocols (sslv2 and v3) web page doesn't load at all!!!! i used this config: SSLProtocol all SSLCipherSuite all would you please explain this for me? how can use tlsv1 without enabling the sslv2?
Thank you.
Aucun commentaire:
Enregistrer un commentaire