copr-fe: Use secure TLSv1.1 and TLSv1.2 ciphers

2014-09-21 13:57:52 +02:00 · 2014-09-21 13:57:52 +02:00 · ba2da3ed82
commit ba2da3ed82
parent 48e13f74ea
1 changed files with 2 additions and 2 deletions
--- a/files/copr/fe/httpd/coprs.conf
+++ b/files/copr/fe/httpd/coprs.conf
@ -22,8 +22,8 @@ WSGISocketPrefix /var/run/wsgi
 <VirtualHost *:443>
    SSLEngine on
    SSLProtocol all -SSLv2
-    #optimeize on speed
-    SSLCipherSuite RC4-SHA:AES128-SHA:HIGH:!aNULL:!MD5
+    # Use secure TLSv1.1 and TLSv1.2 ciphers
+    SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:RC4-SHA:AES128-SHA:HIGH:!aNULL:!MD5
    SSLHonorCipherOrder on
    Header add Strict-Transport-Security "max-age=15768000"