Blah

2015-07-31 02:34:53 +02:00
parent d02a7cedc8
commit 4d9533ca0a
161 changed files with 248 additions and 30687 deletions
--- a/apache2/modules.d/40_mod_ssl.conf
+++ b/apache2/modules.d/40_mod_ssl.conf
@@ -10,7 +10,7 @@ SSLRandomSeed connect builtin
 # This is the Apache server configuration file providing SSL support.
 # It contains the configuration directives to instruct the server how to
 # serve pages over an https connection. For detailing information about these 
-# directives see <URL:http://httpd.apache.org/docs/2.2/mod/mod_ssl.html>
+# directives see <URL:http://httpd.apache.org/docs/2.4/mod/mod_ssl.html>

 # Do NOT simply read the instructions in here without understanding
 # what they do.  They're here only as hints or reminders. If you are unsure
@@ -50,14 +50,18 @@ SSLPassPhraseDialog  builtin
 ## Inter-Process Session Cache:
 # Configure the SSL Session Cache: First the mechanism  to use and second the
 # expiring timeout (in seconds).
-#SSLSessionCache		dbm:/var/run/ssl_scache
-SSLSessionCache			shmcb:/var/run/ssl_scache(512000)
+#SSLSessionCache		dbm:/run/ssl_scache
+SSLSessionCache			shmcb:/run/ssl_scache(512000)
 SSLSessionCacheTimeout  300

 ## Semaphore:
 # Configure the path to the mutual exclusion semaphore the SSL engine uses
 # internally for inter-process synchronization.
-SSLMutex  file:/var/run/ssl_mutex
+Mutex file:/run/apache_ssl_mutex ssl-cache
+
+## SSL Compression:
+# Known to be vulnerable thus disabled by default (bug #507324).
+SSLCompression off
 </IfDefine>

 # vim: ts=4 filetype=apache