# Due to the exploit path known as B.E.A.S.T., the cipher suite # needs to be carefully constructed. This is the current Apache # trunk recommendation: SSLHonorCipherOrder on SSLCipherSuite RC4-SHA:AES128-SHA:HIGH:!aNULL:!EXP:!MD5:!NULL SSLProtocol all -SSLv2