diff -ruN e-smith-base-5.0.0.old/root/etc/e-smith/db/configuration/defaults/modSSL/CipherSuite e-smith-base-5.0.0/root/etc/e-smith/db/configuration/defaults/modSSL/CipherSuite
--- e-smith-base-5.0.0.old/root/etc/e-smith/db/configuration/defaults/modSSL/CipherSuite	2006-02-17 03:41:51.000000000 +0000
+++ e-smith-base-5.0.0/root/etc/e-smith/db/configuration/defaults/modSSL/CipherSuite	2012-07-19 05:42:22.000000000 +0100
@@ -1 +1 @@
-ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM
+HIGH:!SSLv2
diff -ruN e-smith-base-5.0.0.old/root/etc/e-smith/db/configuration/migrate/30CipherSuiteUpdate e-smith-base-5.0.0/root/etc/e-smith/db/configuration/migrate/30CipherSuiteUpdate
--- e-smith-base-5.0.0.old/root/etc/e-smith/db/configuration/migrate/30CipherSuiteUpdate	1970-01-01 01:00:00.000000000 +0100
+++ e-smith-base-5.0.0/root/etc/e-smith/db/configuration/migrate/30CipherSuiteUpdate	2012-07-19 05:58:14.000000000 +0100
@@ -0,0 +1,9 @@
+{
+    # Migrate old CipherSuite value to new secure default
+    # Will not change CipherSuite if it has been modified from the original default, or deleted.
+    return unless defined $modSSL{CipherSuite};
+    if($modSSL{CipherSuite} eq 'ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM')
+    {
+        $DB->set_prop('modSSL', 'CipherSuite', 'HIGH:!SSLv2');
+    }
+}