{"id":25977,"date":"2016-03-29T14:54:42","date_gmt":"2016-03-29T12:54:42","guid":{"rendered":"https:\/\/mamchenkov.net\/wordpress\/?p=25977"},"modified":"2016-03-29T14:54:42","modified_gmt":"2016-03-29T12:54:42","slug":"cipherli-st-strong-ciphers-for-apache-nginx-and-lighttpd","status":"publish","type":"post","link":"https:\/\/mamchenkov.net\/wordpress\/2016\/03\/29\/cipherli-st-strong-ciphers-for-apache-nginx-and-lighttpd\/","title":{"rendered":"Cipherli.st &#8211; strong ciphers for Apache, Nginx and Lighttpd"},"content":{"rendered":"<!-- google_ad_section_start -->\n<p><a href=\"https:\/\/cipherli.st\/\">Cipherli.st<\/a> &#8211; provides ready to use cipher configurations for a variety of applications, such as Apache, Nginx, Lighttpd, HAProxy, Exim, Postfix, Dovecot, OpenSSH, and others. \u00a0This is a huge time-saver for those of us not well versed in cryptography and security.<\/p>\n<p>Don&#8217;t forget to use <a href=\"https:\/\/www.ssllabs.com\/\">Qyalis SSL Labs<\/a> <a href=\"https:\/\/www.ssllabs.com\/ssltest\/\">SSL Server Test<\/a> tool for the complete analysis of where you went wrong.<\/p>\n<!-- google_ad_section_end -->\n","protected":false},"excerpt":{"rendered":"<!-- google_ad_section_start -->\n<p>Cipherli.st &#8211; provides ready to use cipher configurations for a variety of applications, such as Apache, Nginx, Lighttpd, HAProxy, Exim, Postfix, Dovecot, OpenSSH, and others. \u00a0This is a huge time-saver for those of us not well versed in cryptography and security. Don&#8217;t forget to use Qyalis SSL Labs SSL Server Test tool for the complete &hellip; <a href=\"https:\/\/mamchenkov.net\/wordpress\/2016\/03\/29\/cipherli-st-strong-ciphers-for-apache-nginx-and-lighttpd\/\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">Cipherli.st &#8211; strong ciphers for Apache, Nginx and Lighttpd<\/span><\/a><\/p>\n<!-- google_ad_section_end -->\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"Cipherli.st - strong ciphers for Apache, Nginx and Lighttpd #WebDev #SysAdmin #security #hosting #SSL","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"_links_to":"","_links_to_target":""},"categories":[1,133,62,1334],"tags":[3085,2888,3144,3066,3164,200,3413,1330,2289],"keyring_services":[],"class_list":["post-25977","post","type-post","status-publish","format-standard","hentry","category-general","category-sysadmin","category-technology","category-web-work","tag-apache","tag-cryptography","tag-exim","tag-mysql","tag-nginx","tag-security","tag-ssl","tag-web-development","tag-web-hosting"],"aioseo_notices":[],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack-related-posts":[{"id":26208,"url":"https:\/\/mamchenkov.net\/wordpress\/2016\/06\/27\/lets-encrypt-on-centos-7-and-amazon-ami\/","url_meta":{"origin":25977,"position":0},"title":"Let&#8217;s Encrypt on CentOS 7 and Amazon AMI","author":"Leonid Mamchenkov","date":"June 27, 2016","format":false,"excerpt":"The last few weeks were super busy at work, so I accidentally let a few SSL certificates expire. \u00a0Renewing them is always annoying and time consuming, so I was pushing it until the last minute, and then some. Instead of going the usual way for the renewal, I decided to\u2026","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":23003,"url":"https:\/\/mamchenkov.net\/wordpress\/2014\/11\/25\/nginx-and-spdy\/","url_meta":{"origin":25977,"position":1},"title":"Nginx and SPDY","author":"Leonid Mamchenkov","date":"November 25, 2014","format":"status","excerpt":"I just popped my SPDY cherry. \u00a0And with Nginx too. Looking at a shiny A+ rating from SSL Labs for a project that is about to go live...","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":48892,"url":"https:\/\/mamchenkov.net\/wordpress\/2020\/05\/13\/caddy-the-ultimate-server-with-automatic-https\/","url_meta":{"origin":25977,"position":2},"title":"Caddy &#8211; The Ultimate Server with Automatic HTTPS","author":"Leonid Mamchenkov","date":"May 13, 2020","format":false,"excerpt":"Great things are easy to get used to.\u00a0 When something works the way you want it, and does so for a long a time, it is inevitable that one day you'll stop thinking about it altogether and accept it as a given. Apache was a great web server, until Nginx\u2026","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"Caddy web server","src":"https:\/\/i0.wp.com\/mamchenkov.net\/wordpress\/wp-content\/uploads\/2020\/05\/caddy-500x293.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":21462,"url":"https:\/\/mamchenkov.net\/wordpress\/2014\/04\/09\/the-heartbleed-bug\/","url_meta":{"origin":25977,"position":3},"title":"The Heartbleed Bug","author":"Leonid Mamchenkov","date":"April 9, 2014","format":false,"excerpt":"If you haven't heard about The Heartbleed Bug yet, here is your chance. \u00a0This page describes it nicely in not too technical detail. \u00a0Let's get a few quotes to get you started: The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing\u2026","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"heartbleed","src":"https:\/\/i0.wp.com\/mamchenkov.net\/wordpress\/wp-content\/uploads\/2014\/04\/heartbleed.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":18031,"url":"https:\/\/mamchenkov.net\/wordpress\/2013\/04\/16\/apache2-vs-nginx-for-php-application\/","url_meta":{"origin":25977,"position":4},"title":"Apache2 vs Nginx for PHP application","author":"Leonid Mamchenkov","date":"April 16, 2013","format":"link","excerpt":"Apache2 vs Nginx for PHP application The conclusion is that it doesn\u2019t matter which server you are going to chose. The real performance wins are purely on PHP side. Using an accelerator with caching can multiply the number of requests your infrastructure can maintain.","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":22700,"url":"https:\/\/mamchenkov.net\/wordpress\/2014\/10\/22\/url-rewriting-in-built-in-web-server-of-php\/","url_meta":{"origin":25977,"position":5},"title":"URL rewriting in built-in web server of PHP","author":"Leonid Mamchenkov","date":"October 22, 2014","format":false,"excerpt":"PHP comes with a handy for development built-in web server. \u00a0However, most web projects have friendly URLs these days which are either Apache (mod_rewrite) or Nginx specific configuration. \u00a0This almost renders built-in PHP web server useless. \u00a0Unless you provide a PHP-based routing, like so: Start the PHP web server with\u2026","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"jetpack_sharing_enabled":true,"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/posts\/25977","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/comments?post=25977"}],"version-history":[{"count":0,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/posts\/25977\/revisions"}],"wp:attachment":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/media?parent=25977"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/categories?post=25977"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/tags?post=25977"},{"taxonomy":"keyring_services","embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/keyring_services?post=25977"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}