Listen 443 https

SSLPassPhraseDialog exec:/usr/libexec/httpd-ssl-pass-dialog

SSLSessionCache shmcb:/run/httpd/sslcache(512000) SSLSessionCacheTimeout 300

SSLRandomSeed startup file:/dev/urandom 256 SSLRandomSeed connect builtin

SSLCryptoDevice builtin

## ## SSL Virtual Host Context ##

<VirtualHost default:443>

ErrorLog logs/ssl_error_log LogLevel warn

SSLEngine on

SSLProtocol all -SSLv2 -SSLv3

SSLCipherSuite HIGH:3DES:!aNULL:!MD5:!SEED:!IDEA

SSLCertificateFile /etc/pki/tls/certs/localhost.crt

SSLCertificateKeyFile /etc/pki/tls/private/localhost.key

<Files ~ “.(cgi|shtml|phtml|php3?)$”>

SSLOptions +StdEnvVars

</Files> <Directory “/var/www/cgi-bin”>

SSLOptions +StdEnvVars

</Directory>

BrowserMatch “MSIE [2-5]” \

nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

RemoteIPHeader X-Forwarded-For LogFormat “%t - %a - %s - %{Host}i - "%r" "%{Referer}i" "%{User-agent}i" %D” xfel CustomLog logs/ssl_access_log xfel

IncludeOptional sites.d/*.conf

</VirtualHost>