When using Apache Web Server as a front-end / reverse proxy to 4D (such as described in Tech Note #75920) you can also use Apache to force a certain level of SSL as required by the Payment Card Industry (PCI).

The following code can be used to turn off SSLv2:

# enable SSLv3 and TLSv1, but not SSLv2 SSLProtocol all -SSLv2

Apache's default SSLv.2 setting can be changed with the following code:

SSLCipherSuite HIGH:+MEDIUM:!SSLv2:!EXP:!ADH:!aNULL:!eNULL:!NULL

For more information: https://httpd.apache.org/docs/2.0/mod/mod_ssl.html

To check your server go to: https://www.serversniff.net/content.php?do=ssl