I've got a vulnerability scan showing that SSLv3 is enabled on port 8090 on our Splunk 7.1.1 indexer. In my server.conf file we don't have these lines below:
[sslConfig]sslVersions = *,-ssl2,-ssl3cipherSuite = TLSv1.2:!eNULL:!aNULL
Is it ok to add them manually to disable SSLv3 on port 443 (TCP)?
not port 8090
yes, or even better is list accepted versions.
There are also couple of other source which guided you to do it.
You can add ciphersuite and sslversion manually.
whats your idea behind it? what would you like to enable if you disable ssl3?would you like to enable tls?first you mentioned your Vulnerability scan found sslv3 is enabled on 8090.
again you mentioned end of your question that you would like to disable on 443?
Exactly, İ would you like to enable tls.