--- ssl.conf.orig
+++ ssl.conf
@@ -56,7 +56,8 @@
 	#   ciphers(1) man page from the openssl package for list of all available
 	#   options.
 	#   Enable only secure ciphers:
-	SSLCipherSuite HIGH:!aNULL
+	#   More info: <https://scotthelme.co.uk/https-cheat-sheet/>
+	SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
 
 	# SSL server cipher order preference:
 	# Use server priorities for cipher algorithm choice.
@@ -65,12 +66,12 @@
 	# the CPU cost, and did not override SSLCipherSuite in a way that puts
 	# insecure ciphers first.
 	# Default: Off
-	#SSLHonorCipherOrder on
+	SSLHonorCipherOrder on
 
 	#   The protocols to enable.
-	#   Available values: all, SSLv3, TLSv1, TLSv1.1, TLSv1.2
+	#   Available values: all, SSLv3, TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
 	#   SSL v2  is no longer supported
-	SSLProtocol all -SSLv3
+	SSLProtocol all -SSLv3 -TLSv1 -TLSv1.1
 
 	#   Allow insecure renegotiation with clients which do not yet support the
 	#   secure renegotiation protocol. Default: Off
@@ -80,6 +81,9 @@
 	#   Default: Off
 	#SSLStrictSNIVHostCheck On
 
+	SSLUseStapling On
+	SSLStaplingCache "shmcb:${APACHE_RUN_DIR}/ssl_stapling(32768)"
+
 </IfModule>
 
 # vim: syntax=apache ts=4 sw=4 sts=4 sr noet
>
<a href='/notmuch/?h=master'>summary</a><a href='/notmuch/refs/?h=master'>refs</a><a href='/notmuch/log/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed?h=master'>log</a><a href='/notmuch/tree/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed?h=master'>tree</a><a href='/notmuch/commit/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed?h=master'>commit</a><a class='active' href='/notmuch/diff/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed?h=master'>diff</a></td><td class='form'><form class='right' method='get' action='/notmuch/log/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed'>
<input type='hidden' name='h' value='master'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/notmuch/diff/?h=master'>root</a>/<a href='/notmuch/diff/tags?h=master'>tags</a>/<a href='/notmuch/diff/tags/85?h=master'>85</a>/<a href='/notmuch/diff/tags/85/11?h=master'>11</a>/<a href='/notmuch/diff/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org?h=master'>E1o8BCs-0002QV-2o@fasolo.debian.org</a>/<a href='/notmuch/diff/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed?h=master'>killed</a></div><div class='content'><div class='cgit-panel'><b>diff options</b><form method='get'><input type='hidden' name='h' value='master'/><table><tr><td colspan='2'/></tr><tr><td class='label'>context:</td><td class='ctrl'><select name='context' onchange='this.form.submit();'><option value='1'>1</option><option value='2'>2</option><option value='3' selected='selected'>3</option><option value='4'>4</option><option value='5'>5</option><option value='6'>6</option><option value='7'>7</option><option value='8'>8</option><option value='9'>9</option><option value='10'>10</option><option value='15'>15</option><option value='20'>20</option><option value='25'>25</option><option value='30'>30</option><option value='35'>35</option><option value='40'>40</option></select></td></tr><tr><td class='label'>space:</td><td class='ctrl'><select name='ignorews' onchange='this.form.submit();'><option value='0' selected='selected'>include</option><option value='1'>ignore</option></select></td></tr><tr><td class='label'>mode:</td><td class='ctrl'><select name='dt' onchange='this.form.submit();'><option value='0' selected='selected'>unified</option><option value='1'>ssdiff</option><option value='2'>stat only</option></select></td></tr><tr><td/><td class='ctrl'><noscript><input type='submit' value='reload'/></noscript></td></tr></table></form></div><div class='diffstat-header'><a href='/notmuch/diff/?h=master'>Diffstat</a> (limited to 'tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed')</div><table summary='diffstat' class='diffstat'><tr><td class='mode'>-rw-r--r--</td><td class='add'><a href='/notmuch/diff/tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed?h=master'>tags/85/11/E1o8BCs-0002QV-2o@fasolo.debian.org/killed</a></td><td class='right'>0</td><td class='graph'><table summary='file diffstat' width='0%'><tr><td class='add' style='width: -nan%;'/><td class='rem' style='width: -nan%;'/><td class='none' style='width: -nan%;'/></tr></table></td></tr>
</table><div class='diffstat-summary'>1 files changed, 0 insertions, 0 deletions</div><table summary='diff' class='diff'><tr><td>