diff options
| author | Ben Laurie <ben@apache.org> | 2005-06-11 16:26:01 +0000 |
|---|---|---|
| committer | Ben Laurie <ben@apache.org> | 2005-06-11 16:26:01 +0000 |
| commit | 451131ff76b1feaa713bc3656a3e342f2e0d490a (patch) | |
| tree | 1ee55fe6020203257e69ce800f893df4c033feb8 | |
| parent | d638593d7a2ad52a5303d05c17aae44b3de5c34d (diff) | |
| download | httpd-451131ff76b1feaa713bc3656a3e342f2e0d490a.tar.gz | |
Note on ciphersuites.
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/fips-dev@190145 13f79535-47bb-0310-9956-ffa450edef68
| -rw-r--r-- | README-FIPS | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/README-FIPS b/README-FIPS index 14aab82cae..93b405c2b5 100644 --- a/README-FIPS +++ b/README-FIPS @@ -38,3 +38,11 @@ code). Certificates: must be signed using SHA-1.
Passwords: must be SHA-1 hashed.
+
+httpd.conf:
+
+SSLProtocol +TLSv1
+
+SSLCipherSuite DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-SHAEXP1024-DHE-DSS-DES-CBC-SHA:EXP1024-DES-CBC-SHA:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA
+
+The cipher suites can, of course, be a subset of the above.
|