Vincent_Malguy_
Jun 19, 2008Nimbostratus
ssl profile security option
Hi, I wanted to know if someone know which option should be allow in a ssl profile to meet this requiment extracted from a apache config :
SSLProtocol -ALL +SSLv3 +TLSv1
SSLCipherSuite ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM
I have already ENABLE those :
No SSLv2
Single DH use
but i am not sure about the other Cipher to exclude.
Regards, Vincent Malguy.