Forum Discussion
Julio_Navarro
Cirrostratus
Thanks Dario!
How about "how to apply the options portion of the profile":
options { netscape-reuse-cipher-change-bug microsoft-big-sslv3-buffer msie-sslv2-rsa-padding ssleay-080-client-dh-bug tls-d5-bug tls-block-padding-bug dont-insert-empty-fragments no-ssl no-dtls no-session-resumption-on-renegotiation no-tlsv1.1 single-dh-use ephemeral-rsa cipher-server-preference tls-rollback-bug no-sslv2 no-sslv3 no-tlsv1 pkcs1-check-1 pkcs1-check-2 netscape-ca-dn-bug netscape-demo-cipher-change-bug }
Apr 02, 2020
'Options' are specific features to increase security. The better way is to enable all that you can.
REF - https://devcentral.f5.com/s/articles/ssl-profiles-part-5-ssl-options
KR,
Dario.