JBlond/httpd.conf

## httpd.conf
<IfModule mod_headers.c>
    Header always set Strict-Transport-Security "max-age=15553000"
</IfModule>
SSLUseStapling Off
SSLSessionCache shmcb:/opt/apache2/logs/ssl_gcache_data(512000)
SSLStaplingCache shmcb:/opt/apache2/logs/ssl_stapling_data(512000)
SSLOptions +StrictRequire +StdEnvVars -ExportCertData
SSLProtocol -all +TLSv1 +TLSv1.1 +TLSv1.2
SSLCompression Off
SSLHonorCipherOrder On
SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:!LOW:!MD5:!aNULL:!eNULL:!3DES:!EXP:!PSK:!SRP:!DSS
	<IfModule mod_headers.c>
	Header always set Strict-Transport-Security "max-age=15553000"
	</IfModule>
	SSLUseStapling Off
	SSLSessionCache shmcb:/opt/apache2/logs/ssl_gcache_data(512000)
	SSLStaplingCache shmcb:/opt/apache2/logs/ssl_stapling_data(512000)
	SSLOptions +StrictRequire +StdEnvVars -ExportCertData
	SSLProtocol -all +TLSv1 +TLSv1.1 +TLSv1.2
	SSLCompression Off
	SSLHonorCipherOrder On
	SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:!LOW:!MD5:!aNULL:!eNULL:!3DES:!EXP:!PSK:!SRP:!DSS