Part of hardening Apache web server is correcting SSL configuration. (If you do not have a SSL certificate to start with, please get one from Let's Encrypt) I am using a guideline from Mozilla, and testing my configuration using SSL Labs.
In addition to that, I use nmap to verify list of supported ciphers. This is the command,
nmap --script ssl-enum-ciphers -p 443 example.com
- --script Choose a script to execute. In this case,
ssl-enum-ciphersinitiates SSL/TLS connections with different ciphers.
- -p Port number.