CasperSecurity
<VirtualHost *:443>
ServerName aca.uiet.co.in
ServerAlias www.aca.uiet.co.in
ServerAdmin webmaster@localhost
DocumentRoot /var/www/acasv2.uiet.co.in
<Directory /var/www/acasv2.uiet.co.in>
AllowOverride All
Require all granted
</Directory>
<FilesMatch "\.php$">
SetHandler "proxy:unix:/run/php/php8.1-fpm.sock|fcgi://localhost/"
</FilesMatch>
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
SSLEngine on
SSLProtocol All -SSLv2 -SSLv3
SSLHonorCipherOrder on
SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+AESGCM EECDH EDH+AESGCM EDH+aRSA HIGH !MEDIUM !LOW !aNULL !eNULL !LOW !RC4 !MD5 !EXP !PSK !SRP !DSS"
SSLCompression Off
Header add Strict-Transport-Security "max-age=15552000"
SSLCertificateFile /etc/ssl/certs/ec572c9f433c7159.crt
SSLCertificateKeyFile /etc/ssl/private/uim.org.in.key
SSLCertificateChainFile /etc/ssl/certs/gd_bundle-g2.crt
<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory /usr/lib/cgi-bin>
SSLOptions +StdEnvVars
</Directory>
<FilesMatch \.php$>
SetHandler "proxy:unix:/run/php/php8.1-fpm.sock|fcgi://localhost/"
</FilesMatch>
BrowserMatch "MSIE [2-6]" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
</VirtualHost>
# vim: syntax=apache ts=4 sw=4 sts=4 sr noet