Name
SSLBanCipher
Synopsis
SSLBanCipher cipher-list
Config, virtual, .htaccess, directory
Not available in Apache v2
This directive specifies a space-separated list of cipher suites, as
per SSLRequire-Cipher
, except it bans them. The
logic is as follows: if banned, reject; if required, accept; if no
required ciphers are listed, accept. For example:
SSLBanCipher NULL-MD5 NULL-SHA
It is sensible to ban these suites because they are test suites that actually do no encryption.
Get Apache: The Definitive Guide, 3rd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.