This isn't a Pound specific solution, it covers Apache/OpenSSL, but the same considerations and SSLCipherSuite should apply so hopefully its helps:
http://blog.ivanristic.com/2013/08/configuring-apache-nginx-and-openssl-for-forward-secrecy.html You *will* need a recent-ish OpenSSL, and you *might* need to run one of the patched Pound versions (e.g. the PCI-DSS version). C. On 12 September 2013 16:24, Root Kev <[email protected]> wrote: > Hello All, > > We are having an issue getting forward secrecy working correctly with our > pound setup. Can anyone give us an example of a working configuration > and/or the ciphers that should be used (or even if the current stable > version of pound supports it?). > > Thanks! > > Kevin >
