From f32a7d63173731a10ebf504c122365c51f75c94d Mon Sep 17 00:00:00 2001 From: Alex Dehnert Date: Thu, 16 Oct 2014 01:56:35 -0400 Subject: [PATCH] Upgrade SSL settings See: - Mozilla's recommendations: https://wiki.mozilla.org/Security/Server_Side_TLS#Apache - SSLLabs results: https://www.ssllabs.com/ssltest/analyze.html?d=dehnerts.com --- mods-available/ssl.conf | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/mods-available/ssl.conf b/mods-available/ssl.conf index 79f5a12..bc4f93e 100644 --- a/mods-available/ssl.conf +++ b/mods-available/ssl.conf @@ -52,7 +52,11 @@ SSLMutex file:${APACHE_RUN_DIR}/ssl_mutex # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. # enable only secure ciphers: -SSLCipherSuite HIGH:MEDIUM:!ADH:!MD5 +#SSLCipherSuite HIGH:MEDIUM:!ADH:!MD5 + +# Intermediate compatibility from https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28default.29: +SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA +SSLHonorCipherOrder on # Use this instead if you want to allow cipher upgrades via SGC facility. # In this case you also have to use something like # SSLRequire %{SSL_CIPHER_USEKEYSIZE} >= 128 @@ -60,7 +64,10 @@ SSLCipherSuite HIGH:MEDIUM:!ADH:!MD5 #SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL # enable only secure protocols: SSLv3 and TLSv1, but not SSLv2 -SSLProtocol all -SSLv2 +SSLProtocol all -SSLv2 -SSLv3 + +# Compression is rarely supported and vulnerable, see CRIME attack +SSLCompression Off # Allow insecure renegotiation with clients which do not yet support the # secure renegotiation protocol. Default: Off -- 2.34.1