Overview

File mod_gnutls.conf of Package apache2-mod_gnutls

# Using 4 memcache servers to distribute the SSL Session Cache.
#GnuTLSCache memcache "mc1.example.com mc2.example.com mc3.example.com mc4.example.com"
#GnuTLSCacheTimeout 600

#Listen 1.2.3.1:443
#NameVirtualHost 1.2.3.1:443

#<VirtualHost 1.2.3.1:443>
    GnuTLSEnable on
# Here we disable the Perfect forward secrecy ciphersuites (DHE)
# and disallow AES-256 since AES-128 is just fine.
#    GnuTLSPriorities NORMAL:!DHE-RSA:!DHE-DSS:!AES-256-CBC:%COMPAT
#    DocumentRoot /www/site1.example.com/html
#    ServerName site1.example.com:443
#    GnuTLSCertificateFile conf/ssl/site1.crt
#    GnuTLSKeyFile conf/ss/site1.key
#</VirtualHost>
#<VirtualHost 1.2.3.1:443>
#    GnuTLSEnable on
# Here we instead of disabling the DHE ciphersuites we use
# Diffie Hellman parameters of smaller size than the default (2048 bits).
# Using small numbers from 768 to 1024 bits should be ok once they are
# regenerated every few hours.
# Use "certtool --generate-dh-params --bits 1024" to get those
#    GnuTLSDHFile /etc/apache2/dh.params
#    GnuTLSPriorities NORMAL:!AES-256-CBC:%COMPAT
#    DocumentRoot /www/site2.example.com/html
#    ServerName site2.example.com:443
#    GnuTLSCertificateFile conf/ssl/site2.crt
#    GnuTLSKeyFile conf/ss/site2.key
#</VirtualHost>
openSUSE Build Service is sponsored by
Places