[Apache] TLS 1.2 ์„ค์ •ํ•˜๊ธฐ

    ๋ฐ˜์‘ํ˜•

     

    apache httpd.conf ๋˜๋Š” ssl ์„ค์ • ๊ตฌ๋ฌธ์— ๋‹ค์Œ ๋‚ด์šฉ์„ ์ถ”๊ฐ€

     

    - ๊ถŒ์žฅ ์•Œ๊ณ ๋ฆฌ์ฆ˜

    SSLProtocol -All +TLSv1.2
SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHERSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-
SHA384

    - ๋ฒ”์šฉ ์•Œ๊ณ ๋ฆฌ์ฆ˜

    SSLProtocol -All +TLSv1.2
SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHEECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCMSHA384:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHEECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-
SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHEDSS-AES128-SHA256:DHE-DSS-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-
SHA:AES256-SHA:AES:CAMELLIA:!DES-CBC3-
SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSADES-CBC3-SHA:!KRB5-DES-CBC3-SHA:!DHE-RSA-AES128-GCM-SHA256:!DHE-RSA-AES256-GCMSHA384:!DHE-RSA-AES128-SHA256:!DHE-RSA-AES256-SHA:!DHE-RSA-AES128-SHA:!DHE-RSAAES256-SHA256:!DHE-RSA-CAMELLIA128-SHA:!DHE-RSA-CAMELLIA256-SHA:!DHE-RSA-3DES

     

    ์œ„ ๊ตฌ๋ฌธ์€ SSL ํ”„๋กœํ† ์ฝœ ๋ฐฉ์‹์„ ๋ชจ๋“  ํ”„๋กœํ† ์ฝœ ์ œ์™ธ ํ›„, TLSv1.2 ๋งŒ ์ถ”๊ฐ€ํ•˜์—ฌ ์‚ฌ์šฉํ•˜๋ฏ€๋กœ, ๊ธฐํƒ€ ํ•„์š”ํ•œ

    ํ”„๋กœํ† ์ฝœ์€ +{ํ”„๋กœํ† ์ฝœ} ๋ฐฉ์‹์œผ๋กœ ๋’ค์— ์ถ”๊ฐ€ํ•ด์•ผํ•จ.

     

    728x90
    ๋ฐ˜์‘ํ˜•

    ๋Œ“๊ธ€

    ๋ผ์ด๋ธŒ๋Ÿฌ๋ฆฌ ๋ธŒ๋žœ๋“œ ๊ทธ๋ฃน | Chiptune's storage

    ํ‹ฐ์Šคํ† ๋ฆฌํˆด๋ฐ”