This website is deprecated, and remains online only for historic access to old issues and docs for historic versions of Virtualmin. It has been unmaintained for several years, and should not be relied on for up-to-date information. Please visit www.virtualmin.com instead.

Optimize SSL for better security

1 post / 0 new

Topic locked

#1 Wed, 02/22/2017 - 01:20

shiraz

Optimize SSL for better security

Hi!

I have been trying to apply some SSL optimization to a particular domains apache vhost configuration and it seems to be failing for some reason. I added the following rules to the end of http config (Configure Website For SSL > Edit Directives) and I restarted apache and unfortunately apache not starting....

SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
## SSLProtocol All -SSLv2 -SSLv3
SSLHonorCipherOrder On
Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains"
Header always set X-Frame-Options DENY
Header always set X-Content-Type-Options nosniff
SSLCompression off
SSLUseStapling on
SSLStaplingCache "shmcb:logs/stapling-cache(150000)"

I am using the same rules on a different lamp setup without virtualmin and it seems to be working fine! Any help greatly appreciated!