Better CryptoThis test is not about the certificate – it’s about the TLS version and the crypto algorithms chosen. The configuration is based on recommendations from  – a project dedicated to provide up-to-date copy & paste ready configurations for modern servers.

This server does not support SSL at all. It only supports TLS version 1.0 and later. It has a very strong sense of crypto and do not accept weak crypto algorithms. If your client can not connect, you have an old implementation.


Next test

Configuration for Apache HTTPD

Here’s the core of the TLS web server configuration for Apache HTTPD. If you want a reference configuration, please visit and use their up-to-date recommendations.


SSLProtocol All -SSLv2 -SSLv3
SSLHonorCipherOrder On
SSLCompression off
# Add six earth month HSTS header for all users...
Header always set Strict-Transport-Security "max-age=15768000"

HTTPS | Crypto