THC SSL DDOS tools - how to protect

oct

THC SSL DDOS tools – how to protect

z. Administration, System 2011-10-26

You may have heard about the new DDOS tools released by THc yesterday exploiting an OLD CVE :

here is how to protect yourlsef from the vulnerability :

Just edit your SSL configuration files ( or all your vhost files, depend your configuration) as follows:

SSLVerifyDepth 4 # max number of depth
SSLVerifyClient none (ou require)
SSLCipherSuite RC4-SHA:RC4-MD5:HIGH:MEDIUM:!ADH:!DSS:!SSLv2:+3DES # Ciphers suite used in the renegociation
SSLProtocol all -SSLv2 # Let’s disable sslv2
SSLHonorCipherOrder on #using the order we just set

have fun @patching your apache configuration files !

Get Shareaholic

apache, conf, configuration, ddos, ssl, thc, tools

Address: http://www.devquotes.com/2011/10/26/thc-ssl-ddos-tools-how-to-protect/

« Google+ Invitations provided

WMIC – Windows Management Instrumentation « Command-Line » »

Trackback

devquotes,

devs are (s)talking.