Skip to main content

Apache Pre VirtualHost Include and SSL Cipher Suite cPanel Config

Comments

3 comments

  • cPanelJasonT
    Hello, Thank you for the contribution. SSL Ciphers for Apache can be modified in WHM Home "Service Configuration "Apache Configuration under the Global Configuration. Documentation for this feature is available here: Apache Configuration - Documentation - cPanel Documentation
    0
  • PbG
    Thank you again vlee! This suite looks good! I just need to figure out how to change the sort order so all 256 are preferred over 128.
    Just being nice today... I found this following configuration below is very helpful in providing solid security on cPanel servers. Scored a A+ on SSL Server Test at SSL Server Test (Powered by Qualys SSL Labs) No weak Cipher Suites at all. Everyone is welcome use what I have and even improve it and please post your improvements in this thread thank you. SSL Cipher Suite
    ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256
    I hope this helps you all out.

    0
  • vlee
    Udated SSL Ciphers for Apache
    EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5:!DES-CBC3-SHA:!ECDHE-RSA-DES-CBC3-SHA
    0

Please sign in to leave a comment.