Disable SSL/TLS compression in 3.1

[RevSaxon]

After upgrading a proxmox cluster from 2.3 to 3.1 the new apache replacement is triggering an error in our Nessus scanner, for TLS CRIME vulnerability. The mitigation suggested is to disable SSL/TLS compression, but for the life of me, I can't find a way to do that.

Has anyone else run into this issues/found a work around?

 

[dietmar]

Has anyone else run into this issues/found a work around?

AFAIK, all major web browsers have already been patched (disable ssl compression) or do not support SSL/TLS compression at all.

 

[dietmar]

I will also disable ssl compression at server side in next upload ( pve-manager >= 3.1-13)