WorkaHolic

httpd-ssl.conf 본문

Server/Apache

httpd-ssl.conf

Programics 2019. 5. 9. 11:57

#
Listen 443
SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4
SSLProxyCipherSuite HIGH:MEDIUM:!MD5:!RC4
SSLHonorCipherOrder on
SSLProtocol all -SSLv3
SSLProxyProtocol all -SSLv3
SSLPassPhraseDialog  builtin
SSLSessionCache        "shmcb:/opt/apache/logs/ssl_scache(512000)"
SSLSessionCacheTimeout  300

<VirtualHost _default_:443>
    DocumentRoot "/home/public"
    ServerName domain.name
    ServerAlias www.domain.name
    ErrorLog "/opt/apache/logs/ssl_domain.name_error_log"
    TransferLog "/opt/apache/logs/ssl_domain.name_access_log"

SSLEngine on
    SSLCertificateFile "/opt/apache/conf/ssl/ssl.crt"
    SSLCertificateKeyFile "/opt/apache/conf/ssl/ssl.key"
    SSLCertificateChainFile "/opt/apache/conf/ssl/chain_all_ssl.crt"
    SSLCACertificateFile "/opt/apache/conf/ssl/chain_ssl.crt"
    SSLOptions +StdEnvVars

<FilesMatch "\.(cgi|shtml|phtml|php)$">
    SSLOptions +StdEnvVars

<Directory "/opt/apache/cgi-bin">
    SSLOptions +StdEnvVars


BrowserMatch "MSIE [2-5]" \
         nokeepalive ssl-unclean-shutdown \
         downgrade-1.0 force-response-1.0

CustomLog "/opt/apache/logs/ssl_request_log" \
          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

반응형

'Server > Apache' 카테고리의 다른 글

httpd-vhost.conf  (0) 2019.05.09
기본 설정  (0) 2018.11.22
'Server/Apache' Related Articles more