httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David Mehler <>
Subject [users@httpd] apache 2.4 pfs and cipher configuration
Date Tue, 31 Jul 2018 04:01:04 GMT

I'm upgrading my apache configuration. If anyone who is a server
security admin could take a look at this configuration, I need to know
if the ciphers chosen are all pfs, have the strongest settings?

SSLInsecureRenegotiation Off
SSLSessionTickets Off
SSLOpenSSLConfCmd DHParameters "/usr/local/etc/apache24/dh.pem"
SSLOpenSSLConfCmd ECDHParameters secp256k1
SSLOpenSSLConfCmd Curves secp256k1
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1

My openssl version is 1.0.20, apache 2.4.34.


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message