For "SSL/TLS CRIME attack" problem, I need to disable the SSL/TLS compression option in my apache server. Tell your comments.
Try SSLCompression off in your Apache Httpd configuration. This may be the default value depending on the version you use.