From 29d755433faaf8f5f66ea455cebc4e3ac8e62ed3 Mon Sep 17 00:00:00 2001
From: Frank Gehann <gehannf@gmail.com>
Date: Thu, 30 Oct 2014 14:57:04 +0100
Subject: [PATCH] set explicit sslprotocol to react to poodle attack stuff
 (nginx)

---
 scripts/jobs/cron_tasks.inc.http.30.nginx.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/jobs/cron_tasks.inc.http.30.nginx.php b/scripts/jobs/cron_tasks.inc.http.30.nginx.php
index a77dbe94..ecc5fda2 100644
--- a/scripts/jobs/cron_tasks.inc.http.30.nginx.php
+++ b/scripts/jobs/cron_tasks.inc.http.30.nginx.php
@@ -531,7 +531,7 @@ class nginx {
 		if ($domain['ssl_cert_file'] != '') {
 			// obsolete: ssl on now belongs to the listen block as 'ssl' at the end
 			//$sslsettings .= "\t" . 'ssl on;' . "\n";
-			$sslsettings .= "\t" . 'ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;' . "\n";
+			$sslsettings .= "\t" . 'ssl_protocols TLSv1 TLSv1.1 TLSv1.2;' . "\n";
 			$sslsettings .= "\t" . 'ssl_ciphers ' . Settings::Get('system.ssl_cipher_list') . ';' . "\n";
 			$sslsettings .= "\t" . 'ssl_prefer_server_ciphers on;' . "\n";
 			$sslsettings .= "\t" . 'ssl_certificate ' . makeCorrectFile($domain['ssl_cert_file']) . ';' . "\n";