Security/Server Side TLS: Difference between revisions

Jump to navigation Jump to search

Security/Server Side TLS (view source)

Revision as of 13:36, 17 April 2015

98 bytes added ,  17 April 2015
→‎Apache
Line 303: Line 303:
Apache supports OCSP Stapling, but only in httpd 2.3.3 and later.
Apache supports OCSP Stapling, but only in httpd 2.3.3 and later.


In Apache 2.4.6, the DH parameter is always set to 1024 bits and is not user configurable. Future versions of Apache will automatically select a better value for the DH parameter.
Before Apache 2.4.7, the DH parameter is always set to 1024 bits and is not user configurable. This has been fixed in mod_ssl 2.4.7 that Red Hat has backported into their RHEL 6 Apache 2.2 distribution with httpd-2.2.15-32.el6. Future versions of Apache will automatically select a better value for the DH parameter.
The configuration below is recommended.
 
<pre>
<pre>
<VirtualHost *:443>
<VirtualHost *:443>
Ulfr
Confirmed users
529

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1068988"

Navigation menu