Optimize SSL for better security


I have been trying to apply some SSL optimization to a particular domains apache vhost configuration and it seems to be failing for some reason. I added the following rules to the end of http config (Configure Website For SSL > Edit Directives) and I restarted apache and unfortunately apache not starting…

SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH ## SSLProtocol All -SSLv2 -SSLv3 SSLHonorCipherOrder On Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains" Header always set X-Frame-Options DENY Header always set X-Content-Type-Options nosniff SSLCompression off SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)"

I am using the same rules on a different lamp setup without virtualmin and it seems to be working fine! Any help greatly appreciated!