Disabling RC4 cipher in Apache in CentOS 7.2.1511

To disable RC4 cipher in CentOS 7.2.1511, disable it in your Apache ssl config.

Display the current configuration :

[root@localhost:~]# grep -vEi '^(#|$)' /etc/httpd/conf.d/ssl.conf

Update your ssl configuration :

SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA:!RC4

Restart your Apache web server :

[root@localhost:~]# systemctl restart httpd.service

Test your new web server ssl configuration with openssl client s_client :

[root@localhost:~]# openssl s_client -cipher 'RC4' -connect server_fqdn:443

If the output displays “alert handshake failure“, then rc4 cipher has been disabled.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s