Re: Important SSL ciphers undocumented

Hi, i wouldn't recommend you to use the 1.0.1f version, since it has a CVE-2016-2107 On 9 June 2016 at 09:19, Hildegard Meier wrote: > > Hello, > > regarding the page > > https://httpd.apache.org/docs/current/mod/mod_ssl.html#sslciphersuite > > (using Apache 2.4.7 and openssl

Important SSL ciphers undocumented

Hello, regarding the page https://httpd.apache.org/docs/current/mod/mod_ssl.html#sslciphersuite (using Apache 2.4.7 and openssl 1.0.1f) I am missing some ciphers (or aliases?), which are really important to mention, I think, since they provide better security: AESCGM (no mentioning of CGM