I'd highly recommend using Mozilla's wiki instead which is also much more likely to stand the test of time and be a good resource in the future too: <a href="https://wiki.mozilla.org/Security/Server_Side_TLS" rel="nofollow">https://wiki.mozilla.org/Security/Server_Side_TLS</a>. It also contains good rationales for which combinations of ciphers to chose in which cases and lots more useful information than "just do this".<p>The associated configuration generator can be found here: <a href="https://mozilla.github.io/server-side-tls/ssl-config-generator/" rel="nofollow">https://mozilla.github.io/server-side-tls/ssl-config-generat...</a>.