Hedgehog Security

Call +44 3333 444 256

Apache Howto – Perfect SSL Security

I often get asked for the best way to ensure perfect A or A+ level of SSL security on Apache web servers. So to answer that particular question, here is how I go it.

Firstly, adding the following to /etc/apache/config-available/security.conf to ensure the SSL security across all virtual hosts:

<IfModule mod_ssl.c>
  SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
  SSLProtocol All -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
  SSLHonorCipherOrder On
  SSLCompression off
</IfModule>

Once you have added this to the config file, just restart apache and boom, security.

Peter

Peter
With more than 26 years of Information Security experience, 14 of them being the Chief Information Security Officer of FTSE 250 businesses, I have a wealth of experience in keeping organisations safe and secure. My day to day role is that of Cyber Security Adviser to a number of organisations and CISO's spread across the globe, helping them maintain an appropriate risk appetite and compliance level. My passion is ensuring my clients stay as safe and secure as they can be.
All Posts

Find out how to​

Win at Cyber Security​

Ask us a question, any question at all. As long as it has to do with Information Security / Cyber Security, we will get back to you with an answer.

We have recently had questions on Penetration Testing scope generation, how to complete a risk register for ISO27001 and how to harden the Apache webserver.

Email Us

hello@hedgehogsecurity.com

Chat

Chat via Discord

Call

+44 3333 444 256

CREST Approved
Tiger Scheme Qualified
Cyber Essentials
ISO27001, ISO22301 and ISO9001 Certified
PCI-DSS Certified
NAVIGATION

Bug Bounty

Responsible Disclosure

Cookie Policy

Privacy Policy

Terms & Conditions

Spam filtering

SOCIAL MEDIA
Facebook
Twitter
Youtube
Github
TWITTER FEED

© 2009 – 2021 Hedgehog Cyber Security. All Rights Reserved.

Supporting the EFF | Spam Protection supplied by MX Guarddog