Title
Best practice Apache SSL configuration - Ciphers - Solution Architecting - Mark Woodbury
Favorites
Description
Upon installation, the default Apache SSL configuration for SSL standards are not optimal and will achieve low scores when run through SSL implementation testing services such as Qualys’ SSL Labs.
The below configuration lines can be added to your Apache configuration to achieve a higher grade and improve the security of your SSL/HTTPS implementation using Apache and OpenSSL. As of February 2014 this configuration achieves an “A-” on the Qualys results when using RedHat/CentOS operating system and standard repo installations of Apache and OpenSSL. The main reason that the result is not better is due to the fact that RedHat currently has concerns over “possible patent issues”.
Site Icon
Rate the Link
Page Views
494
Visit with QR Code
Share
Add to your Site[Preview the Widget]
Report
User ReviewsSubmit Your Review
Based on 0 Votes and 0 Reviews
No review has been added yet, be the first to add it.
Comments will not be approved to be posted if they are SPAM, abusive, off-topic, use profanity, contain a personal attack, or promote hate of any kind.