{"id":4352,"date":"2014-11-04T11:59:34","date_gmt":"2014-11-04T10:59:34","guid":{"rendered":"https:\/\/www.bdjl.de\/localhost\/?p=4352"},"modified":"2014-12-10T08:07:45","modified_gmt":"2014-12-10T07:07:45","slug":"ssl-apache-komfort-und-sicherheit-ii","status":"publish","type":"post","link":"https:\/\/www.bdjl.de\/localhost\/?p=4352","title":{"rendered":"SSL, Apache, Komfort und Sicherheit II"},"content":{"rendered":"<p><a href=\"https:\/\/www.bdjl.de\/localhost\/wp-content\/uploads\/2014\/11\/scolis.de_.2014.11.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-medium wp-image-4353\" src=\"https:\/\/www.bdjl.de\/localhost\/wp-content\/uploads\/2014\/11\/scolis.de_.2014.11-640x407.png\" alt=\"scolis.de.2014.11\" width=\"640\" height=\"407\" srcset=\"https:\/\/www.bdjl.de\/localhost\/wp-content\/uploads\/2014\/11\/scolis.de_.2014.11-640x407.png 640w, https:\/\/www.bdjl.de\/localhost\/wp-content\/uploads\/2014\/11\/scolis.de_.2014.11-624x397.png 624w, https:\/\/www.bdjl.de\/localhost\/wp-content\/uploads\/2014\/11\/scolis.de_.2014.11.png 928w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/a><\/p>\n<p>Kompatibilit\u00e4t und Sicherheit lassen sich mit den folgenden Zeilen in der ssl.conf des Apache ganz ordentlich verwirklichen:<\/p>\n<pre class=\"lang:apache decode:true \">SSLHonorCipherOrder on\r\nSSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS<\/pre>\n<p>Get\u00f6tet werden damit die Browser IE6 und IE8 unter Windows XP sowie BingBot und YahooSlurp, die alle noch kein SNI k\u00f6nnen und deswegen auf Scolis sowieso auf die Schnauze fallen.<\/p>\n<p>Ich denke, ich hab nun erst einmal einen ordentlichen Kompromiss gefunden.<\/p>\n<p><a href=\"https:\/\/hynek.me\/articles\/hardening-your-web-servers-ssl-ciphers\/\" target=\"_blank\">Via<\/a> | Beachte: <a title=\"SSL, Apache, Komfort und Sicherheit III\" href=\"https:\/\/www.bdjl.de\/localhost\/?p=4393\">Update des Beitrags!<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Kompatibilit\u00e4t und Sicherheit lassen sich mit den folgenden Zeilen in der ssl.conf des Apache ganz ordentlich verwirklichen: SSLHonorCipherOrder on SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS Get\u00f6tet werden damit die Browser IE6 und IE8 unter Windows XP sowie BingBot und YahooSlurp, die alle noch kein SNI k\u00f6nnen und deswegen auf Scolis sowieso auf die Schnauze fallen. Ich denke, ich hab [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[340,247,453,140],"class_list":["post-4352","post","type-post","status-publish","format-standard","hentry","category-linux","tag-apache","tag-https","tag-ssl","tag-verschlusselung"],"_links":{"self":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts\/4352","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4352"}],"version-history":[{"count":4,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts\/4352\/revisions"}],"predecessor-version":[{"id":4399,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts\/4352\/revisions\/4399"}],"wp:attachment":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4352"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4352"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4352"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}