How to disable TLS Renegotation in ElasticBeanstalk AWS for Linux AMI?

It is a security best practice to disable TLS Renegotiation in production. What is the best way to do this in an Apache2-based Elastic Beanstalk Deployment (Python/Django)?

To disable TLS Renegotiation in Amazon Elastic Beanstalk for Linux AMI, you can modify the Apache configuration file. Here's the steps:

Step 1 : Connect to your EC2 instance using SSH.

Step 2 : Open the Apache configuration file using a text editor:

sudo nano /etc/httpd/conf.d/ssl.conf

Step 3 : Add the following line to the end of the file:

SSLInsecureRenegotiation off

Step 4 : Save and close the file.

Step 5 : Restart Apache to apply the changes by typing:

sudo service httpd restart
Back to Top