[PVE-User] Change pveproxy to tls1.2

Paul Gray gray at cs.uni.edu
Tue Dec 2 13:18:00 CET 2014

On 12/02/2014 06:03 AM, Sten Aus wrote:
> It's hardcoded but works perfectly (I guess until next upgrade, but anyway).
> A way how to disable sslv3 and support tls1.2 and 1.1 is that:
> Edit file /usr/bin/pveproxy
> Find "method => "tlsv1", comment it out.
> Now "ssleay" supports all tls versions and ssl versions.
> It's relatively easy to disable sslv3 by adding a line
> "sslv3 => 0,"

Many thanks for this, Sten.



More information about the pve-user mailing list