Cipherli.st Strong Ciphers for Apache, nginx and Lighttpd SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH SSLProtocol All -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 SSLHonorCipherOrder On Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" Header always set X-Frame-Options DENY Header always set X-Content-Type-Options nosniff # Requires Apache >= 2.4 SSLCom
![Cipherli.st - Strong Ciphers for Apache, nginx and Lighttpd](https://cdn-ak-scissors.b.st-hatena.com/image/square/a04602cded42c967f0fb489426cc0592a7208429/height=288;version=1;width=512/https%3A%2F%2Fcipherli.st%2Fimg%2Ffavicon.png)