View Issue Details

IDProjectCategoryView StatusLast Update
0000135Nix[All Projects] Generalpublic2023-09-08 12:58
ReporterimmaeAssigned Toimmae 
PrioritynormalSeveritymajorReproducibilityhave not tried
Status closedResolutionfixed 
Summary0000135: Add correct apache configuration for SSL
Description

.

Additional Information

Old config:

<IfModule ssl_module>
   SSLRandomSeed startup builtin
   SSLRandomSeed connect builtin
   Listen 188.165.209.148:443
   Listen [2001:41d0:2:9c94::1]:443
   Listen 127.0.0.1:443
   Listen [::1]:443
   AddType application/x-x509-ca-cert .crt
   AddType application/x-pkcs7-crl    .crl
   SSLPassPhraseDialog  builtin
   SSLSessionCache        "shmcb:/var/run/httpd/ssl_scache(512000)"
   SSLSessionCacheTimeout  300
#   SSLMutex  "file:/var/run/httpd/ssl_mutex"

   # Given by https://mozilla.github.io/server-side-tls/ssl-config-generator/
   # Test with:
   # https://www.ssllabs.com/ssltest/analyze.html?d=www.immae.eu&s=176.9.151.154&latest
   SSLProtocol             all -SSLv3
   SSLCipherSuite          ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
   SSLHonorCipherOrder     on
   SSLCompression          off
   SSLSessionTickets       off

   SSLUseStapling          on
   SSLStaplingResponderTimeout 5
   SSLStaplingReturnResponderErrors off
   SSLStaplingCache        shmcb:/var/run/ocsp(128000)

   SSLCACertificateFile "/etc/ssl/certs/ca-certificates.crt"
</IfModule>
TagsNo tags attached.

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2020-02-21 14:12 immae New Issue
2020-04-27 17:16 immae Assigned To => immae
2020-04-27 17:16 immae Status new => resolved
2020-04-27 17:16 immae Resolution open => fixed
2023-09-08 12:58 immae Status resolved => closed