Beide Seiten der vorigen RevisionVorhergehende ÜberarbeitungNächste Überarbeitung | Vorhergehende Überarbeitung |
tachtler:apache_http_server_centos_7_-_mod_ssl_-_verschluesselung_https [2018/02/12 08:30] – [Zertifikat: Dateisystem] klaus | tachtler:apache_http_server_centos_7_-_mod_ssl_-_verschluesselung_https [2018/06/25 12:55] (aktuell) – [/etc/httpd/conf.d/ssl.conf] klaus |
---|
# Tachtler | # Tachtler |
# default: SSLProtocol all -SSLv2 | # default: SSLProtocol all -SSLv2 |
SSLProtocol -all +TLSv1 +TLSv1.1 +TLSv1.2 | SSLProtocol all -SSLv2 -SSLv3 |
| |
# SSL Cipher Suite: | # SSL Cipher Suite: |
# Tachtler | # Tachtler |
# default: SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5 | # default: SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5 |
SSLCipherSuite ALL:HIGH:!MEDIUM:!LOW:!aNULL:!ADH:!eNULL:!EXP:!RC4:!MD5 | SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:!aNULL:!MD5:!DSS |
| |
# Speed-optimized SSL Cipher configuration: | # Speed-optimized SSL Cipher configuration: |
# Tachtler | # Tachtler |
# default: SSLProtocol all -SSLv2 | # default: SSLProtocol all -SSLv2 |
SSLProtocol -all +TLSv1 +TLSv1.1 +TLSv1.2 | SSLProtocol all -SSLv2 -SSLv3 |
</code> | </code> |
| |
# Tachtler | # Tachtler |
# default: SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5 | # default: SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5 |
SSLCipherSuite ALL:HIGH:!MEDIUM:!LOW:!aNULL:!ADH:!eNULL:!EXP:!RC4:!MD5 | SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:!aNULL:!MD5:!DSS |
</code> | </code> |
| |
X509v3 Subject Alternative Name: | X509v3 Subject Alternative Name: |
DNS:apache70040.tachtler.net, DNS:apache70050.tachtler.net, DNS:apache70060.tachtler.net, | DNS:apache70040.tachtler.net, DNS:apache70050.tachtler.net, DNS:apache70060.tachtler.net, |
DNS:apache70090.tachtler.net, DNS:apache70100.tachtler.net, DNS:apache70110.tachtler.net, DNS:awstats70060.tachtler.net, DNS:awstats70090.tachtler.net, DNS:buero.tachtler.net, | DNS:apache70090.tachtler.net, DNS:apache70100.tachtler.net, DNS:apache70110.tachtler.net, |
| DNS:awstats70060.tachtler.net, DNS:awstats70090.tachtler.net, DNS:buero.tachtler.net, |
DNS:dmarcreports.tachtler.net, DNS:dokuwiki.tachtler.net, DNS:e2loganalyzer.tachtler.net, | DNS:dmarcreports.tachtler.net, DNS:dokuwiki.tachtler.net, DNS:e2loganalyzer.tachtler.net, |
DNS:elasticsearch70110.tachtler.net, DNS:fail2map.tachtler.net, DNS:gitlab.tachtler.net, | DNS:elasticsearch70110.tachtler.net, DNS:fail2map.tachtler.net, DNS:gitlab.tachtler.net, |
DNS:ipmi.tachtler.net, DNS:mailgraph.tachtler.net, DNS:mysqldumper.tachtler.net, DNS:nutch70100.tachtler.net, | DNS:ipmi.tachtler.net, DNS:mailgraph.tachtler.net, DNS:mysqldumper.tachtler.net, DNS:nutch70100.tachtler.net, |
DNS:phpldapadmin.tachtler.net, DNS:phpmyadmin.tachtler.net, DNS:postfixadmin.tachtler.net, | DNS:phpldapadmin.tachtler.net, DNS:phpmyadmin.tachtler.net, DNS:postfixadmin.tachtler.net, |
DNS:proxy.tachtler.net, DNS:psiprobe70100.tachtler.net, DNS:receiver.tachtler.net, DNS:repository.tachtler.net, | DNS:proxy.tachtler.net, DNS:psiprobe70100.tachtler.net, DNS:receiver.tachtler.net, |
DNS:router-dg.tachtler.net, DNS:router.tachtler.net, DNS:solr70100.tachtler.net, DNS:squid.tachtler.net, | DNS:repository.tachtler.net,DNS:router-dg.tachtler.net, DNS:router.tachtler.net, DNS:solr70100.tachtler.net, |
DNS:squidanalyzer.tachtler.net, DNS:switch.tachtler.net, DNS:tachtler.net, DNS:tomcat70100.tachtler.net, DNS:usv.tachtler.net, DNS:webcam.tachtler.net, DNS:webcamarchiv.tachtler.net, DNS:webdav.tachtler.net, | DNS:squid.tachtler.net, DNS:squidanalyzer.tachtler.net, DNS:switch.tachtler.net, DNS:tachtler.net, |
DNS:wpad.tachtler.net, DNS:www.dokuwiki.tachtler.net, DNS:www.tachtler.net | DNS:tomcat70100.tachtler.net, DNS:usv.tachtler.net, DNS:webcam.tachtler.net, DNS:webcamarchiv.tachtler.net, |
| DNS:webdav.tachtler.net, DNS:wpad.tachtler.net, DNS:www.dokuwiki.tachtler.net, DNS:www.tachtler.net |
X509v3 Certificate Policies: | X509v3 Certificate Policies: |
Policy: 2.23.140.1.2.1 | Policy: 2.23.140.1.2.1 |