... to meet the expectations of SSL Labs Server Test. But after hours of tuning your find out, that apache 2.2 isn't able to serve ECDHE-ciphers - even with openssl 1.0.1c. That's sad cause apache 2.2 is considered stable and ECDHE-ciphers are the only ones that work with internet explorer. So either no perfect forward secrecy for most of your visitors or upgrade to apache 2.4.
But behold, here is the solution: a patch against apache 2.2 to enable ECDHE in openssl 1.0.1c and up.
Just add
SSLHonorCipherOrder On
SSLProtocol ALL -SSLv2
SSLCipherSuite ECDH+AES256:EDH+AES256:-DHE-RSA-AES256-SHA:EDH+CAMELLIA256:DHE-RSA-AES256-SHA:ECDH+AES128:ECDH+RC4:ECDH+3DES:EDH+AES128:-DHE-RSA-AES128-SHA:EDH+CAMELLIA128:DHE-RSA-AES128-SHA:EDH+3DES:EDH+SEED:RSA+AES256:RSA+CAMELLIA256:RSA+AES128:RSA+CAMELLIA128:3DES:SEED:RC4-SHA:!aNULL:!eNULL:!EXP:!MD5