zdenek/docker-php-alpine
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

OpenSSL: povol legacy TLS a sniž security level

Browse Source
This commit is contained in:
zdenek
2025-09-23 10:10:48 +00:00
parent a60a694292
commit 137ba77bca
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
Dockerfile
View File

@@ -62,6 +62,13 @@ LABEL org.opencontainers.image.title="docker-php-alpine" \
org.opencontainers.image.source="https://git.najihu.net/zdenek/docker-php-alpine" \ org.opencontainers.image.source="https://git.najihu.net/zdenek/docker-php-alpine" \
org.opencontainers.image.licenses="MIT" org.opencontainers.image.licenses="MIT"
# --- OpenSSL: povol legacy TLS a sniž security level ---
RUN set -eux; \
cp /etc/ssl/openssl.cnf /etc/ssl/openssl.cnf.bak || true; \
awk 'BEGIN{print "openssl_conf = openssl_init"}{print}END{print "\n[openssl_init]\nssl_conf = ssl_sect\n\n[ssl_sect]\nsystem_default = system_default_sect\n\n[system_default_sect]\nMinProtocol = TLSv1\nCipherString = DEFAULT:@SECLEVEL=0"}' \
/etc/ssl/openssl.cnf.bak > /etc/ssl/openssl.cnf
# Entrypoint spustí FPM a Apache (root → Apache si sám shodí práva) # Entrypoint spustí FPM a Apache (root → Apache si sám shodí práva)
COPY docker-entrypoint.sh /docker-entrypoint.sh COPY docker-entrypoint.sh /docker-entrypoint.sh
RUN chmod +x /docker-entrypoint.sh RUN chmod +x /docker-entrypoint.sh