Bug#754960: libapache2-mod-gnutls: cannot disable SSLv3

Hi, I could disable SSL3 and TLS1.0 with this line in the configuration of virtual hosts: GnuTLSPriorities NONE:!VERS-SSL3.0:!VERS-TLS1.0:+VERS-TLS1.1:+VERS-TLS1.2:+AES-128-CBC:+RSA:+SHA1:+COMP-NULL If I put this line in the file "/etc/apache2/mods-enabled/gnutls.conf" and not in virtual

Bug#754960: libapache2-mod-gnutls: cannot disable SSLv3

What works¹ for me to disable SSLv3 was add the following to /etc/apache2/mods-available/gnutls.conf: GnuTLSPriorities NONE:!VERS-SSL3.0:+VERS-TLS1.0:+ARCFOUR-128:+RSA:+SHA1:+COMP-NULL That should cover not only Poodle but BEAST as well, according to

Bug#754960: libapache2-mod-gnutls: cannot disable SSLv3

Package: libapache2-mod-gnutls Version: 0.5.10-4 Followup-For: Bug #754960 Dear Maintainer, With the poodle bug, I tried disabling SSL3 and TLS1.0 of guntls without success. I tested a HTTPS test web site with the sslscan command and the site https://www.ssllabs.com/ssltest. I changed the GnuT

Bug#754960: libapache2-mod-gnutls: cannot disable SSLv3

Package: libapache2-mod-gnutls Version: 0.5.10-1.1 Severity: normal Dear Maintainer, when I try to disable SSLv3 on one of my virtual name based vhosts with this line: GnuTLSPriorities SECURE256:-VERS-SSL3.0:-VERS-TLS1.0:+VERS-TLS1.2:+VERS-TLS1.1 the Qualsys SSL labs test still tells me th