Secure your apache webserver openssl configuration to score an A in ssllabs



Open /etc/apache2/apache2.conf in you favorite editor

  1. Disable ssl v2 and v3 by changing the line starting with sslprotocol to the one below
    SSLProtocol ALL -SSLv2 -SSLv3
  2. add the following line to make sure the ciphers are used in best order
    SSLHonorCipherOrder On
  3. Change the sslcipherSuite line to the one below and save the file afterwards
  4. Restart apache2
    service apache2 restart
  5. check the configuration on ssllabs