Obě strany předchozí revizePředchozí verzeNásledující verze | Předchozí verzeNásledující verzeObě strany příští revize |
let-s-encrypt [2016/10/07 12:40] – blazek | let-s-encrypt [2016/12/16 14:02] – [HTTP secure] blazek |
---|
SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4 | SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4 |
SSLCompression Off | SSLCompression Off |
Header add Strict-Transport-Security "max-age=15552000" | Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" |
| # Header always set X-Frame-Options SAMEORIGIN |
| Header always set X-Frame-Options DENY |
SSLCertificateFile /home/letsencrypt/.acme.sh/example.com/example.com.cer | SSLCertificateFile /home/letsencrypt/.acme.sh/example.com/example.com.cer |
SSLCertificateKeyFile /home/letsencrypt/.acme.sh/example.com/example.com.key | SSLCertificateKeyFile /home/letsencrypt/.acme.sh/example.com/example.com.key |
SSLCACertificateFile /home/letsencrypt/.acme.sh/example.com/ca.cer | SSLCACertificateFile /home/letsencrypt/.acme.sh/example.com/fullchain.cer |
</VirtualHost> | </VirtualHost> |
| |
SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4 | SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4 |
SSLCompression Off | SSLCompression Off |
Header add Strict-Transport-Security "max-age=15552000" | Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" |
| # Header always set X-Frame-Options SAMEORIGIN |
| Header always set X-Frame-Options DENY |
SSLCertificateFile /home/letsencrypt/.acme.sh/example.com/example.com.cer | SSLCertificateFile /home/letsencrypt/.acme.sh/example.com/example.com.cer |
SSLCertificateKeyFile /home/letsencrypt/.acme.sh/example.com/example.com.key | SSLCertificateKeyFile /home/letsencrypt/.acme.sh/example.com/example.com.key |
SSLCACertificateFile /home/letsencrypt/.acme.sh/example.com/ca.cer | SSLCACertificateFile /home/letsencrypt/.acme.sh/example.com/fullchain.cer |
ErrorLog logs/example.com-error_log | ErrorLog logs/example.com-error_log |
CustomLog logs/example.com-access_log common | CustomLog logs/example.com-access_log common |