SSL/TLS Strong Encryption: How-To

https://httpd.apache.org/docs/trunk/ssl/ssl_howto.html

# "Modern" configuration, defined by the Mozilla Foundation's SSL Configuration
# Generator as of August 2016. This tool is available at
# https://mozilla.github.io/server-side-tls/ssl-config-generator/
SSLProtocol         all -SSLv3 -TLSv1 -TLSv1.1
# Many ciphers defined here require a modern version (1.0.1+) of OpenSSL. Some
# require OpenSSL 1.1.0, which as of this writing was in pre-release.
SSLCipherSuite      ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256
SSLHonorCipherOrder on
SSLCompression      off
SSLSessionTickets   off

 

ntpq -pn

[email protected]:~# ntpq -pn                                                                         
     remote           refid      st t when poll reach   delay   offset  jitter                  
==============================================================================                  
-67.198.200.4    69.89.207.199    3 u   30   64    1    1.182   -0.029   0.000                  
+216.239.35.0    .GOOG.           1 u   20   64    1   52.571    0.660   0.240                  
+216.239.35.4    .GOOG.           1 u   20   64    1   36.033    1.016   0.176                  
-216.239.35.8    .GOOG.           1 u   24   64    1  140.712    1.154   0.286                  
*216.239.35.12   .GOOG.           1 u   23   64    1  126.636    1.082   0.233