Yet another OpenSSL vulnerability in the loose. While the vendors release fixes, Puppet to the rescue!. Let’s start by disabling those weak ciphers.
For the apache https server, you can use the puppetlabs-apache module to disable weak ciphers:
More information on https://forge.puppetlabs.com/puppetlabs/apache/readme#class-apachemodssl
Using Postfix? No problem, the camptocamp-postfix module can help you there:
More information on https://forge.puppetlabs.com/camptocamp/postfix
How about IIS 7? We can use the puppetlabs-registry module to disable weak ciphers:
More information on https://forge.puppetlabs.com/puppetlabs/registry