Part of hardening Apache web server is correcting SSL configuration. (If you do not have a SSL certificate to start with, please get one from Let's Encrypt) I am using a guideline from Mozilla, and testing my configuration using SSL Labs.

In addition to that, I use nmap to verify list of supported ciphers. This is the command,

nmap --script ssl-enum-ciphers -p 443 example.com

Switches

  • --script Choose a script to execute. In this case, ssl-enum-ciphers initiates SSL/TLS connections with different ciphers.
  • -p Port number.