Stop POODLE SSL (SSLv3 Vulnerability) Attacks on Apache

To stop the evil POODLE SSL attack on Apache, you need to disable the SSLv2 and SSLv3 protocols.

Add the following line of text to your apache.conf file, usually found in folder /etc/apache2

SSLProtocol All -SSLv2 -SSLv3

Run the apache configuration test command after doing this:

apachectl configtest

Then restart apache, the “hard” way:

/etc/init.d/apache2 stop
/etc/init.d/apache2 start

You are good to go!

 

Apache Tip : Add a Custom HTTP Response Header

Here’s a handy tip for adding a custom header of your design to every response.

Open your Apache config file (name is usually httpd.conf), usually found in one of these locations (depending on your distro):

/etc/apache2/
/etc/httpd/conf/

Tip: You can also discover the location of this file by executing one of the following:

apache2 -V

or (depending upon your distro):

httpd -V

To find httpd (or apache2, or any other program), use this:

locate httpd

Anyway, to add a header of your choosing to each response, add the following to your config file:

<IfModule mod_headers.c>
        Header set MyHeader "%D %t"
</IfModule>

In the example above, a custom response header named MyHeader is sent along with the value of the current date (%D) and time (%t).