Listen 443 https
SSLPassPhraseDialog exec:/usr/libexec/httpd-ssl-pass-dialog
SSLSessionCache shmcb:/run/httpd/sslcache(512000) SSLSessionCacheTimeout 300
SSLRandomSeed startup file:/dev/urandom 256 SSLRandomSeed connect builtin
SSLCryptoDevice builtin
## ## SSL Virtual Host Context ##
<VirtualHost default:443>
ErrorLog logs/ssl_error_log LogLevel warn
SSLEngine on
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite HIGH:3DES:!aNULL:!MD5:!SEED:!IDEA
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
<Files ~ “.(cgi|shtml|phtml|php3?)$”>
SSLOptions +StdEnvVars
</Files> <Directory “/var/www/cgi-bin”>
SSLOptions +StdEnvVars
</Directory>
BrowserMatch “MSIE [2-5]” \
nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0
RemoteIPHeader X-Forwarded-For LogFormat “%t - %a - %s - %{Host}i - "%r" "%{Referer}i" "%{User-agent}i" %D” xfel CustomLog logs/ssl_access_log xfel
IncludeOptional sites.d/*.conf
</VirtualHost>