2.3.155 SSLRequiredCiphers
SSLRequiredCiphers specifies encryption types that can be used for the SSL communication.
Description
SSLRequiredCiphers specifies the encryption types that can be used for the SSL communication. If one of the encryption types specified in this directive matches one of the encryption types that can be used by the client, SSL communication can be established and HTTP requests can be received. If none of these encryption types match, SSL communication cannot be established and HTTP requests cannot be received.
The following table lists encryption types.
Encryption type |
Key exchange method |
Authentication method |
Symmetric key cryptography |
Encryption key size (in bits) |
Message authentication algorithm |
---|---|---|---|---|---|
RC4-MD5 |
RSA |
RSA |
RC4 |
128 |
MD5 |
RC4-SHA |
RSA |
RSA |
RC4 |
128 |
SHA |
AES128-SHA |
RSA |
RSA |
AES |
128 |
SHA |
AES128-SHA256 |
RSA |
RSA |
AES |
128 |
SHA256 |
DES-CBC3-SHA |
RSA |
RSA |
DES |
168 |
SHA |
AES256-SHA |
RSA |
RSA |
AES |
256 |
SHA |
AES256-SHA256 |
RSA |
RSA |
AES |
256 |
SHA256 |
Syntax
SSLRequiredCiphers encryption_type [:encryption_type ...]
Locations where it can be written
httpsd.conf and <VirtualHost>
Example
SSLRequiredCiphers RC4-MD5:RC4-SHA:DES-CBC3-SHA:AES128-SHA:AES256-SHA