Hello, Is there a way to disable SSLv2 system-wide (assuming non-static linking)? I am trying to get a CentOS 5.6 system to pass a PCI credit card processing certification and the scanning company blindly flags SSLv2 as non-compliant. Rather than try to disable SSLv2 in each application (postfix, Apache, Dovecot, etc), I was hoping there was a low-level directive that would block SSLv2 (but not SSLv3 or TLSv1).
Is there any such directive to torpedo SSLv2 specifically? Mike ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
