From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-157890-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id 678EC13877A
	for <garchives@archives.gentoo.org>; Tue, 12 Aug 2014 00:38:26 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 51F87E0BFE;
	Tue, 12 Aug 2014 00:38:20 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id F2E49E0BF7
	for <gentoo-user@lists.gentoo.org>; Tue, 12 Aug 2014 00:38:18 +0000 (UTC)
Received: from [192.168.0.100] (c-67-169-206-196.hsd1.or.comcast.net [67.169.206.196])
	(using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits))
	(No client certificate requested)
	(Authenticated sender: mjo)
	by smtp.gentoo.org (Postfix) with ESMTPSA id 112EA3401A7
	for <gentoo-user@lists.gentoo.org>; Tue, 12 Aug 2014 00:38:18 +0000 (UTC)
Message-ID: <53E96201.5080805@gentoo.org>
Date: Mon, 11 Aug 2014 20:38:25 -0400
From: Michael Orlitzky <mjo@gentoo.org>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] disable SSLv3 in apache2?
References: <CAN0CFw1GBfrQM9s7FQb3OrVLX7s53RNrSMoLbEcY+2ahj6MJ2g@mail.gmail.com>	<53E6A0E0.4080001@staticsafe.ca> <CAN0CFw1Jzz1AWCU6DGYRZGSpJkvA4MQOZm8Q3g==ovnteKZAMw@mail.gmail.com>
In-Reply-To: <CAN0CFw1Jzz1AWCU6DGYRZGSpJkvA4MQOZm8Q3g==ovnteKZAMw@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-Archives-Salt: 773ef8d2-e6df-450e-b2c1-368dfa3c7a59
X-Archives-Hash: 51279800d6a6a8f9546573a82b1f4a39

On 08/10/2014 11:01 AM, Grant wrote:
>>> I recently upgraded from apache-2.2.27 to apache-2.2.27-r4 and
>>> etc-update wanted to add the following directive to the default SSL
>>> vhost:
>>>
>>> SSLProtocol ALL -SSLv2 -SSLv3
>>>
> 
> Isn't it a browser compatibility issue though?  Are there browsers out
> there that support SSLv3 but not TLS?
> 

IE6 on Windows <= XP. TLSv1 is technically supported, but it's disabled
by default.