Apache2 SSL Labs Rating A+
1
2
3
apache2ctl -v
Server version: Apache/2.4.41 (Ubuntu)
Server built: 2021-07-05T07:16:56
1
a2enmod headers && service apache2 reload
1
nano /etc/apache2/conf-available/security.conf
1
2
3
4
5
ServerTokens Prod
ServerSignature Off
# Modul "headers" aktiviert sein!
Header always set Strict-Transport-Security: "max-age=31536000; includeSubDomains; preload"
1
nano /etc/apache2/mods-available/ssl.conf
1
2
3
4
5
6
7
SSLCipherSuite ALL:!RSA:!CAMELLIA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:!SHA1:!SHA256:!SHA384
SSLHonorCipherOrder on
SSLProtocol all -SSLv3 -TLSv1 -TLSv1.1
# Stapling
SSLUseStapling On
SSLStaplingCache "shmcb:${APACHE_RUN_DIR}/stapling_cache(128000)"
Dieser Eintrag ist vom Autor unter
CC BY 4.0
lizensiert.