I have improved my apache server security settings and now I receive a “A+” rating on https://www.ssllabs.com/ssltest

But when I disable the ‘developer mode’ and enable proxifying my A records on Cloudflare, the rating drops to “A”. The test then reports some weak chipers being used:

TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA

Can I disable them on Cloudflare somehow and regain an “A+” rating?

If you have Advanced Certificate Manager you can customise the cipher suites. Otherwise this is not possible.

This topic was automatically closed after 30 days. New replies are no longer allowed.