Is it sufficient to change: +SSLv2
to -SSLv2 in SSLCipherSuite to disable SSLv2 in modssl? Is that enough to at least temporarily limit the exposure to the latest openssl vulnerability while I upgrade multiple machines? Thanks, Adi ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
