Empfehlungen für Apache2: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 1: | Zeile 1: | ||
| − | = | + | =Juli 2021= |
| − | + | =Beispiel= | |
DHE-RSA-AES256-SHA256 | DHE-RSA-AES256-SHA256 | ||
| Zeile 19: | Zeile 19: | ||
SSLEngine on | SSLEngine on | ||
| − | SSLProtocol | + | SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 |
| − | SSLCipherSuite | + | SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256: ECDHE-RSA-AES128-GCM-SHA256: ECDHE-ECDSA-AES256-GCM-SHA384: ECDHE-RSA-AES256-GCM-SHA384: ECDHE-ECD POLY20: ECDHE-RSA-CHACHA1305-POLY20: DHE-RSA-AES1305-GCM-SHA128: DHE-RSA-AES256-GCM-SHA256 |
| − | |||
| − | SSLHonorCipherOrder | + | SSLHonorCipherOrder off |
| + | |||
| + | SSLSessionTickets off | ||
SSLCompression off | SSLCompression off | ||
SSLOptions +StrictRequire | SSLOptions +StrictRequire | ||
| − | |||
=Quelle= | =Quelle= | ||
*https://www.ssl.com/de/leiten/tls-Einhaltung-von-Standards/ | *https://www.ssl.com/de/leiten/tls-Einhaltung-von-Standards/ | ||
Version vom 13. Juli 2021, 19:19 Uhr
Juli 2021
Beispiel
DHE-RSA-AES256-SHA256
| Symmetrische Verschlüsselung | AES256 |
| Asymmetrische Verschlüsselung | RSA |
| Hash Algorythmus | SHA256 |
| Diffie Helman | DHE |
SSLEngine on
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256: ECDHE-RSA-AES128-GCM-SHA256: ECDHE-ECDSA-AES256-GCM-SHA384: ECDHE-RSA-AES256-GCM-SHA384: ECDHE-ECD POLY20: ECDHE-RSA-CHACHA1305-POLY20: DHE-RSA-AES1305-GCM-SHA128: DHE-RSA-AES256-GCM-SHA256
SSLHonorCipherOrder off
SSLSessionTickets off
SSLCompression off
SSLOptions +StrictRequire