X-Git-Url: https://git.tld-linux.org/?a=blobdiff_plain;f=apache-mod_ssl.conf;h=4da2c7da308745a4b384653f3e040ffb0f215cb5;hb=5898e5ef0bac43134105bf5960f83d9def8caf3b;hp=ccfa2149df776d98a97c643ce777e3d8929765f7;hpb=f53b16d2ec1f017a1ee950e2f9d70e2b7c321e41;p=packages%2Fapache.git diff --git a/apache-mod_ssl.conf b/apache-mod_ssl.conf index ccfa214..4da2c7d 100644 --- a/apache-mod_ssl.conf +++ b/apache-mod_ssl.conf @@ -1,4 +1,3 @@ - LoadModule ssl_module modules/mod_ssl.so # This is the Apache server configuration file providing SSL support. @@ -19,6 +18,10 @@ LoadModule ssl_module modules/mod_ssl.so # block. So, if available, use this one instead. Read the mod_ssl User # Manual for more details. # + +SSLRandomSeed startup file:/dev/urandom 256 +SSLRandomSeed connect builtin + #SSLRandomSeed startup file:/dev/random 512 #SSLRandomSeed startup file:/dev/urandom 512 #SSLRandomSeed connect file:/dev/random 512 @@ -55,21 +58,6 @@ SSLPassPhraseDialog builtin SSLSessionCache shmcb:/var/cache/httpd/ssl_scache(512000) SSLSessionCacheTimeout 300 -# Semaphore: -# Configure the path to the mutual exclusion semaphore the -# SSL engine uses internally for inter-process synchronization. -SSLMutex file:/var/run/httpd/ssl_mutex - -## -## SSL Virtual Host Context -## - -NameVirtualHost *:443 - -# SSL Engine Switch: -# Enable/Disable SSL for this virtual host. -SSLEngine on - # Usable SSL protocol flavors: # This directive can be used to control the SSL protocol flavors mod_ssl # should use when establishing its server environment. Clients then can only @@ -81,6 +69,16 @@ SSLProtocol all -SSLv2 # See the mod_ssl documentation for a complete list. SSLCipherSuite ALL:!ADH:!EXP:!LOW:!SSLv2:RC4+RSA:+HIGH:+MEDIUM + +## +## SSL Virtual Host Context +## + + +# SSL Engine Switch: +# Enable/Disable SSL for this virtual host. +SSLEngine on + # Server Certificate: # Point SSLCertificateFile at a PEM encoded certificate. If # the certificate is encrypted, then you will be prompted for a