enterprise-support team mailing list archive

[Laurent Bonnaud <L.Bonnaud@xxxxxxxxxxx>]

Public bug reported:

An apache server with the default configuration, for example:

  https://xeelee.duckdns.org/

is rated with mark B in ssllabs test:

  https://www.ssllabs.com/ssltest/analyze.html?d=xeelee.duckdns.org

Could you please improve the default config such that it gets an A or A+
mark?

ProblemType: Bug
DistroRelease: Ubuntu 19.04
Package: apache2 2.4.38-2ubuntu1
Uname: Linux 5.0.4-050004-generic x86_64
Apache2ConfdDirListing: False
Apache2Modules:
 AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 192.168.1.26. Set the 'ServerName' directive globally to suppress this message
 httpd (pid 1173) already running
ApportVersion: 2.20.10-0ubuntu23
Architecture: amd64
CurrentDesktop: KDE
Date: Wed Mar 27 09:36:48 2019
ProcEnviron:
 TERM=xterm-256color
 PATH=(custom, no user)
 XDG_RUNTIME_DIR=<set>
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SourcePackage: apache2
UpgradeStatus: No upgrade log present (probably fresh install)
modified.conffile..etc.apache2.sites-available.000-default.conf: [modified]
modified.conffile..etc.apache2.sites-available.default-ssl.conf: [modified]
mtime.conffile..etc.apache2.sites-available.000-default.conf: 2018-02-27T19:06:43.624862
mtime.conffile..etc.apache2.sites-available.default-ssl.conf: 2018-02-27T19:38:05.048042

** Affects: apache2 (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: amd64 apport-bug disco

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to apache2 in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1821877

Title:
  Apache default SSL/TLS config is rated B in ssllabs test

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1821877/+subscriptions