diff options
author | nachoparker <nacho@ownyourbits.com> | 2020-03-23 06:19:39 +0300 |
---|---|---|
committer | nachoparker <nacho@ownyourbits.com> | 2020-03-23 06:27:22 +0300 |
commit | 0a97f776918923e7788e60357fb93b9c24ead531 (patch) | |
tree | 1cab955383747ae1b96f9e3245dfc50c00d1a049 /updates | |
parent | 84e6b4ea6bc3e3fbe49f07a21ca609b627da4cfd (diff) |
lamp: disable old TLS versionsv1.23.2
Signed-off-by: nachoparker <nacho@ownyourbits.com>
Diffstat (limited to 'updates')
-rw-r--r-- | updates/1.24.0.sh | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/updates/1.24.0.sh b/updates/1.24.0.sh new file mode 100644 index 00000000..1c359527 --- /dev/null +++ b/updates/1.24.0.sh @@ -0,0 +1,28 @@ +#!/bin/bash + +set -e + +## BACKWARD FIXES ( for older images ) + +source /usr/local/etc/library.sh # sets NCVER PHPVER RELEASE + +# all images + +# disable old TLS versions +file=/etc/apache2/conf-available/http2.conf +grep -q '^SSLProtocol all -SSLv2 -SSLv3' "${file}" && { + sed -i 's|^SSLProtocol .*|SSLProtocol -all +TLSv1.2|' "${file}" + bash -c "sleep 10 && service apache2 reload" &>/dev/null & +} + +# docker images only +[[ -f /.docker-image ]] && { + : +} + +# for non docker images +[[ ! -f /.docker-image ]] && { + : +} + +exit 0 |