How to enable TLS 1.1 and 1.2 with OpenSSL and Apache

TSL1.2 is now available for apache, to add TSLs1.2 you just need to add in your https virtual host configuration:

SSLProtocol -all +TLSv1.2

-all is removing other ssl protocol (SSL 1,2,3 TLS1)

+TLSv1.2 is adding TLS 1.2

for more browser compatibility you can use

SSLProtocol -all +TLSv1 +TLSv1.1 +TLSv1.2

by the way you can increase the Cipher suite too using:

SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-GCM-SHA256:AES256+EDH:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GC$

you can test your https web site security with online web site like https://www.ssllabs.com/ssltest/index.html

How to enable TLS 1.1 and 1.2 with OpenSSL and Apache

Comparte

Mas entradas

Problemas con yum «Could not resolve host: mirrorlist.centos.org»

La extensión de PLESK Amazon Route 53 no sincroniza las zonas DNS

Manual Uninstallation of Acronis True Image 9.1 and Echo from Linux

Borra papeleras de todos los correos del servidor

Sesión de SSH en mac se cuelga si no la usas durante unos minutos

Mostrar números de línea con el editor de texto vi / vim

Instalar vestacp en Centos 7

Send Us A Message

Get Started

About

Features

Follow Us