I get the task- disable DIFFIE-HELLMAN EPHEMERAL KEY EXCHANGE DOS VULNERABILITY (SSL/TLS, D(HE)ATER
I open settings scripts2/globalapachesetup, navigate to section SSL Cipher Suite
here is values ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256
then I remove keys DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:
then I click save and rebuild and restart apache
then I run command $ openssl s_client -connect ip:443 -cipher "EDH" and it connects
where is my mistake?
I open settings scripts2/globalapachesetup, navigate to section SSL Cipher Suite
here is values ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256
then I remove keys DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:
then I click save and rebuild and restart apache
then I run command $ openssl s_client -connect ip:443 -cipher "EDH" and it connects
where is my mistake?