Disabling SSLv3 Vulnerability

Projecting CentOS servers against the POODLE SSLv3 Vulnerability. # vi /etc/httpd/conf.d/ssl.conf Find the SSLProtocol directive and remove support for SSLv3: # vi SSLProtocol all -SSLv3 -SSLv2 Restart Apache Source: “How To Protect your Server Against the POODLE SSLv3 Vulnerability”

Speed Up Site Performance

Set HTTP Cache Headers <VirtualHost *:80> # Your config… ExpiresActive On <FilesMatch “\.(ico|gif|jpe?g|png|js|css)$”> ExpiresDefault “access plus 1 year” Header unset ETag FileETag None Header unset Last-Modified </FilesMatch> </VirtualHost> Gzip Web Server Output <VirtualHost *:80> # Your config… AddOutputFilterByType DEFLATE text/html text/plain text/xml application/xml application/xhtml+xml text/javascript text/css application/x-javascript BrowserMatch ^Mozilla/4 gzip-only-text/html BrowserMatch ^Mozilla/4\.0[678] no-gzip BrowserMatch \\bMSIE … Continue reading “Speed Up Site Performance”