#允许加密算法排序 ssl.honor-cipher-order = "enable" ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH" ssl.use-compression = "disable" setenv.add-response-header = ( "Strict-Transport-Security" => "max-age=63072000; includeSubDomains; preload", "X-Frame-Options" => "DENY", "X-Content-Type-Options" => "nosniff" ) #禁用SSLV2 SSLV3 ssl.use-sslv2 = "disable" ssl.use-sslv3 = "disable"
Lighttpd SSL安全优化
帮助中心
售前咨询