kwongluk_pang
asked on
How to disable sslv3 protocol on Vmware ESXi 6.0
How to disable SSL version 3 (sslv3) on Vmware ESXi 6.0 host?
Disable the option within OpenSSL.conf
I believe VMware is planning to phase out SSL v3 from it's products.
The POODLE attack, is against the client, not the server.
This should be disabled in your Browser.
This is probbaly one for VMware Support, because vSphere 6.0 was GA, at the time of POODLE.
see also here
VMware KB: VMware Products and CVE-2014-3566 (POODLE)
The POODLE attack, is against the client, not the server.
This should be disabled in your Browser.
This is probbaly one for VMware Support, because vSphere 6.0 was GA, at the time of POODLE.
see also here
VMware KB: VMware Products and CVE-2014-3566 (POODLE)
vsphere 6 was GA 4 months after poodle...
ASKER
if I want to disable in ESXi6.0 instead of browser, Can this be done? I don't find SSLv3 setting in openssl.conf file.
Within OpenSSL.conf there is a line that defines which crypt/protocols are available.
http://www.openssl.org/docs/apps/ciphers.html
You would need to replace ALL with the TLS........... Only excluding others. Make sure to test that .....
http://www.openssl.org/docs/apps/ciphers.html
You would need to replace ALL with the TLS........... Only excluding others. Make sure to test that .....
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
In the meantime vmware tells that ESXi interfaces are not accessed by a browser, so they will disable SSLv3 with next major update i.e. 6u1 5.5u3 etc