TLSv1.0 on Apache 2.2 disabled but still showing active in tests

apache-2.2centos6openssltls

I'm experiencing something odd on our Load Balancer, I've specifically disabled TLSv1 but using the Qualsys SSL Labs test, it's indicating that TLSv1 is still active. For the next little while until we complete a long migration, I'm stuck on HAProxy 1.4 (which doesn't do SSL termination, so it's configured to hand off to Apache), Apache 2.2.15-31. We're also using mod_ssl 2.2.15-31, and it's all sitting on CentOS 6.5. I'm trying to do this so we don't break our PCI compliance at the end of the month.

I'm using the following SSL settings in our vhost…

  SSLEngine on
  SSLProtocol -all +TLSv1.1 +TLSv1.2
  SSLCompression Off
  SSLHonorCipherOrder on
  SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH

But the response back from Qualsys is always…

TLS 1.2     Yes
TLS 1.1     Yes
TLS 1.0     Yes
SSL 3       No
SSL 2       No

Why is TLS 1.0 still active when I've disabled it and only enabled v1.1 and v1.2?

Best Answer

This appears to be a bug in Apache which doesn't allow you to specify TLS 1.1 and 1.2. See this answer and the related thread

Related Solutions

Ssl – Fixing BEAST vulnerability on Apache 2.0 running on RHEL 4

Other than compiling a newer Apache by hand, the only thing I can think of would be to make RC4-SHA the only supported cipher (tested with openssl ciphers RC4-SHA on the current openssl to make sure it only prints one cipher, you may want to do the same to make sure it doens't match some weird old cipher on your old openssl):

SSLCipherSuite RC4-SHA

MS says Windows XP suports TLS_RSA_WITH_RC4_128_SHA so you shouldn't have any compatibility problems.

Nginx/Apache: set HSTS only if X-Forwarded-Proto is https

You could have multiple server blocks. So just add new server block for domains that need HSTS.

server {
    listen xx.xx.xxx.xxx:443 ssl default_server;

    # all ssl stuff
    # and other directives
}

server {
    listen xx.xx.xxx.xxx:443 ssl;
    server_name example.com other.example.com;

    # all ssl stuff
    # and other directives with HSTS enabled
}

Here first block will handle all https connections except example.com and other.example.com.

And you don't need ssl on directive if you have ssl flag in listen.

EDIT

There is another solution with only one server block:

map $scheme:$host $hsts_header {
    default "";
    https:example.com "max-age=31536000";
    https:other.example.com "max-age=31536000";
}

server {
    server_tokens off;

    listen xx.xx.xxx.xxx:80;
    listen xx.xx.xxx.xxx:443 ssl;

    ssl_certificate /etc/ssl/foo.crt;
    ssl_certificate_key /etc/ssl/private/foo.key;

    ssl_session_timeout 10m;

    # ... other ssl stuff

    location / {
        proxy_pass http://127.0.0.1:81;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_set_header X-Forwarded-Port $server_port;
        proxy_set_header Host $host;
        add_header X-XSS-Protection "1; mode=block";
        add_header Strict-Transport-Security $hsts_header;
    }
}

We use map to define HSTS header value and use the fact, than nginx will not add header with empty value.

Best Answer

Related Solutions

Ssl – Fixing BEAST vulnerability on Apache 2.0 running on RHEL 4

Nginx/Apache: set HSTS only if X-Forwarded-Proto is https

Related Topic