I applied the POODLE fix for Apache via SSLProtocol All -SSLv2 -SSLv3 in the ssl.conf file for our Apache server but am having issues with the CAC Client authentication via SSLVerifyClient require.

I have confirmed if I set SSLVerifyClient none our web application can be accessed via HTTPS and uses the correct protocol of TLSv1 but once I set SSLVerifyClient require (which is needed because our Web Application is CAC enabled) I get a page cannot be displayed in IE (IE has SSLv2 and SSLv3 disabled but TLS1.0-3 enabled).

The client is Windows 7 32 bit with IE 8. Server is Windows 2003 SP2.

I have done a packet capture between the client and server. The first client hello is for TLSv1.2 a Fatal Error Close Notify is then sent.

Since my server does not support TLSv1.1 or TLSv1.2 then a Client Hello is sent for TLSv1. The process goes all the way up to Client Certificate request Server Hello Done, then another Fatal Error Close Notify is sent by the client..

Here are the Full TCP streams:

The First stream a client hello is sent and tries to negotiate TLSv1.2 the server rejects as it doesn't support and sends a close notify. The Second stream sends a client hello over TLSv1.0 is send etc.. But this is from one single connection to the web server..

The connection is at TLSv1 as I have verified from The server even agrees on a TLS cipher..

Chrome does work fine even with SSLv2 and SSLv3 disabled via chrome.exe --ssl-version-min=tls1

Also this version of Apache uses mod_ossl

The mod_ossl module enables strong cryptography for Oracle HTTP
Server. This Oracle module is a plug-in to Oracle HTTP Server that
enables the server to use SSL. It is very similar to the OpenSSL
module, mod_ssl. The mod_ossl module is based on the Oracle
implementation of SSL, which supports SSL version 3 and TLS version 1,
and is based on Certicom and RSA Security technology.

I don't know how to upgrade this to support TLS v1.1 and TLS v1.2 as I am on the latest OHS 11g release from Oracle and this is a custom module made by Oracle..


I have enabled debug log level on the OHS Apache logs. I now receive the following errors when using IE to try an access the web application:

[Mon Nov 10 08:16:05 2014] [error] [client X.X.X.X] OHS:2079 nzos handshake error, nzos_Handshake returned 28858(server X.X.X.X:443, client X.X.X.X)
[Mon Nov 10 08:16:05 2014] [error] OHS:2171 NZ Library Error: SSL protocol error [Hint: the client probably speaks HTTPS over HTTP protocol]
[Mon Nov 10 08:16:05 2014] [info] [client X.X.X.X] OHS:2073 Connection to child 107 closed with standard shutdown(server X.X.X.X:443, client X.X.X.X)
[Mon Nov 10 08:16:05 2014] [info] [client X.X.X.X] Connection to child 107 established (server X.X.X.X:443)
[Mon Nov 10 08:16:06 2014] [info] [client X.X.X.X] OHS:2079 nzos handshake error, nzos_Handshake returned 28864(server X.X.X.X:443, client X.X.X.X)
[Mon Nov 10 08:16:06 2014] [info] OHS:2171 NZ Library Error: SSL IO error [Hint: the client stop the connection unexpectedly]
[Mon Nov 10 08:16:06 2014] [info] [client X.X.X.X] OHS:2073 Connection to child 107 closed with standard shutdown(server X.X.X.X:443, client X.X.X.X)

Anyone know how to fix this on Oracle HTTP Server (OHS) Apache

Here is a snippet of my ssl.conf file:

# Oracle HTTP Server mod_ossl configuration file: ssl.conf        #

# OHS Listen Port
Listen 443

<IfModule ossl_module>
##  SSL Global Context
##  All SSL configuration in this context applies both to
##  the main server and all SSL-enabled virtual hosts.

#   Some MIME-types for downloading Certificates and CRLs
    AddType application/x-x509-ca-cert .crt
    AddType application/x-pkcs7-crl    .crl

#   Pass Phrase Dialog:
#   Configure the pass phrase gathering process.
#   The filtering dialog program (`builtin' is a internal
#   terminal dialog) has to provide the pass phrase on stdout.
    SSLPassPhraseDialog  builtin

#   Inter-Process Session Cache:
#   Configure the SSL Session Cache: First the mechanism 
#   to use and second the expiring timeout (in seconds).
    SSLSessionCache "shmcb:${ORACLE_INSTANCE}/diagnostics/logs/${COMPONENT_TYPE}/${COMPONENT_NAME}/ssl_scache(512000)"
    SSLSessionCacheTimeout  300

#   Semaphore:
#   Configure the path to the mutual exclusion semaphore the
#   SSL engine uses internally for inter-process synchronization. 
    <IfModule mpm_winnt_module>
      SSLMutex "none"
    <IfModule !mpm_winnt_module>
      SSLMutex pthread

## SSL Virtual Host Context
<VirtualHost *:443>
#    ServerAdmin
    DocumentRoot "${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/htdocs/asset"
    DirectoryIndex remagnum.html
    ServerName TTSDS09083.TIMPO.OSD.MIL
#    ServerAlias

  <IfModule ossl_module>

   #  SSL Engine Switch:
   #  Enable/Disable SSL for this virtual host.
   SSLEngine on

   #  SSL Cipher Suite:
   #  List the ciphers that the client is permitted to negotiate.

   SSLCipherSuite ALL:+HIGH:-MEDIUM:-LOW:-SSLv2:-SSLv3

   SSLProtocol All -SSLv2 -SSLv3

   #  Client Authentication (Type):
   #  Client certificate verification type and depth.  Types are
   #  none, optional and require.
   #SSLVerifyClient none
   SSLVerifyClient require

   # SSL Certificate Revocation List Check
   # Valid values are On and Off
   SSLCRLCheck Off

   #Path to the wallet
   SSLWallet "${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/keystores/default"

   <FilesMatch "\.(cgi|shtml|phtml|php)$">
      SSLOptions +StdEnvVars +ExportCertData


   <Directory "${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/cgi-bin">
      SSLOptions +StdEnvVars +ExportCertData




Since you disable all SSL 3.0 ciphers and since TLS 1.0 and TLS 1.1 just use the SSL 3.0 ciphers and since IE 8 does not support TLS 1.2 there will be no shared ciphers. You will probably find some error messages about this in your log files.

Note, that the POODLE attack is a design flaw in the SSL 3.0 protocol, not in the SSL 3.0 ciphers. Thus you should only disable the protocol, not the ciphers.

Also, your current cipher suite includes very dangerous ciphers, because it includes ADH ciphers which don't require any form of identification of the server. With such ciphers man-in-the-middle attacks are possible.

Edit: in your comment you mention that the client is using Windows 7. Windows 7 should support TLS 1.2 but since the client obviously did not do much updates on the system (otherwise there would be no IE 8 in use) it might be that there are problems with IE 8 and TLS 1.2.