support de la configuration tls selon https://wiki.mozilla.org/Security/Server_Side_TLS

2016-05-04 11:52:09 +04:00 · 2016-05-04 11:52:09 +04:00 · d9153af17f
parent 135dbf667d
commit d9153af17f
6 changed files with 265 additions and 0 deletions
--- a/lib/ulib/templates/apacheconfig/confs/ssl-config.conf
+++ b/lib/ulib/templates/apacheconfig/confs/ssl-config.conf
@ -0,0 +1,15 @@
+# -*- coding: utf-8 mode: conf -*- vim:sw=4:sts=4:et:ai:si:sta:fenc=utf-8
+<IfModule mod_ssl.c>
+    # cf https://wiki.mozilla.org/Security/Server_Side_TLS
+
+    # Choisir un des profils. Clients les plus anciens pouvant se connecter:
+    # modern: Firefox 27, Chrome 30, Windows 7 IE 11, Edge, Opera 17, Safari 9, Android 5.0, Java 8
+    # intermediate: Firefox 1, Chrome 1, IE 7, Opera 5, Safari 1, Windows XP IE8, Android 2.3, Java 7
+    # old: Windows XP IE6, Java 6
+    #Define SSL_CONFIG_MODERN
+    #Define SSL_CONFIG_INTERMEDIATE
+    #Define SSL_CONFIG_OLD
+
+    # Faut-il activer HSTS?
+    #Define SSL_CONFIG_HSTS
+</IfModule>
--- a/lib/ulib/templates/apacheconfig/modules/ssl.conf
+++ b/lib/ulib/templates/apacheconfig/modules/ssl.conf
--- a/lib/ulib/templates/apacheconfig/modules/ssl.conf..d
+++ b/lib/ulib/templates/apacheconfig/modules/ssl.conf..d
@ -0,0 +1,103 @@
+<IfModule mod_ssl.c>
+    # cf https://wiki.mozilla.org/Security/Server_Side_TLS
+    <IfDefine SSL_CONFIG_MODERN>
+        # modern configuration not supported. same as SSL_CONFIG_INTERMEDIATE below
+        SSLProtocol all -SSLv2 -SSLv3
+        SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
+        SSLHonorCipherOrder on
+    </IfDefine>
+    <IfDefine !SSL_CONFIG_MODERN>
+        <IfDefine SSL_CONFIG_INTERMEDIATE>
+            # intermediate configuration, tweak to your needs
+            SSLProtocol all -SSLv2 -SSLv3
+            SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
+            SSLHonorCipherOrder on
+            SSLCompression off
+            SSLSessionTickets off
+        </IfDefine>
+        <IfDefine !SSL_CONFIG_INTERMEDIATE>
+            <IfDefine SSL_CONFIG_OLD>
+                # old configuration, tweak to your needs
+                SSLProtocol all -SSLv2
+                SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:DES-CBC3-SHA:HIGH:SEED:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!RSAPSK:!aDH:!aECDH:!EDH-DSS-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA:!SRP
+                SSLHonorCipherOrder on
+                SSLCompression off
+                SSLSessionTickets off
+            </IfDefine>
+            <IfDefine !SSL_CONFIG_OLD>
+                # default debian configuration
+
+                #   SSL Cipher Suite:
+                #   List the ciphers that the client is permitted to negotiate.
+                #   See the mod_ssl documentation for a complete list.
+                #   enable only secure ciphers:
+                SSLCipherSuite HIGH:MEDIUM:!ADH
+                #   Use this instead if you want to allow cipher upgrades via SGC facility.
+                #   In this case you also have to use something like 
+                #        SSLRequire %{SSL_CIPHER_USEKEYSIZE} >= 128
+                #   see http://httpd.apache.org/docs/2.2/ssl/ssl_howto.html.en#upgradeenc
+                #SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
+
+                # enable only secure protocols: SSLv3 and TLSv1, but not SSLv2
+                SSLProtocol all -SSLv2
+            </IfDefine>
+        </IfDefine>
+    </IfDefine>
+
+#
+# Pseudo Random Number Generator (PRNG):
+# Configure one or more sources to seed the PRNG of the SSL library.
+# The seed data should be of good random quality.
+# WARNING! On some platforms /dev/random blocks if not enough entropy
+# is available. This means you then cannot use the /dev/random device
+# because it would lead to very long connection times (as long as
+# it requires to make more entropy available). But usually those
+# platforms additionally provide a /dev/urandom device which doesn't
+# block. So, if available, use this one instead. Read the mod_ssl User
+# Manual for more details.
+#
+SSLRandomSeed startup builtin
+SSLRandomSeed startup file:/dev/urandom 512
+SSLRandomSeed connect builtin
+SSLRandomSeed connect file:/dev/urandom 512
+
+##
+##  SSL Global Context
+##
+##  All SSL configuration in this context applies both to
+##  the main server and all SSL-enabled virtual hosts.
+##
+
+#
+#   Some MIME-types for downloading Certificates and CRLs
+#
+AddType application/x-x509-ca-cert .crt
+AddType application/x-pkcs7-crl    .crl
+
+#   Pass Phrase Dialog:
+#   Configure the pass phrase gathering process.
+#   The filtering dialog program (`builtin' is a internal
+#   terminal dialog) has to provide the pass phrase on stdout.
+SSLPassPhraseDialog  builtin
+
+#   Inter-Process Session Cache:
+#   Configure the SSL Session Cache: First the mechanism 
+#   to use and second the expiring timeout (in seconds).
+#   (The mechanism dbm has known memory leaks and should not be used).
+#SSLSessionCache         dbm:${APACHE_RUN_DIR}/ssl_scache
+SSLSessionCache        shmcb:${APACHE_RUN_DIR}/ssl_scache(512000)
+SSLSessionCacheTimeout  300
+
+#   Semaphore:
+#   Configure the path to the mutual exclusion semaphore the
+#   SSL engine uses internally for inter-process synchronization. 
+SSLMutex  file:${APACHE_RUN_DIR}/ssl_mutex
+
+# Allow insecure renegotiation with clients which do not yet support the
+# secure renegotiation protocol. Default: Off
+#SSLInsecureRenegotiation on
+
+# Whether to forbid non-SNI clients to access name based virtual hosts.
+# Default: Off
+#SSLStrictSNIVHostCheck On
+</IfModule>
--- a/lib/ulib/templates/apacheconfig/modules/ssl.conf..d8
+++ b/lib/ulib/templates/apacheconfig/modules/ssl.conf..d8
@ -0,0 +1,133 @@
+# -*- coding: utf-8 mode: conf -*- vim:sw=4:sts=4:et:ai:si:sta:fenc=utf-8
+<IfModule mod_ssl.c>
+    # cf https://wiki.mozilla.org/Security/Server_Side_TLS
+    <IfDefine SSL_CONFIG_MODERN>
+        # modern configuration, tweak to your needs
+        SSLProtocol all -SSLv3 -TLSv1 -TLSv1.1
+        SSLCipherSuite ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256
+        SSLHonorCipherOrder on
+        SSLCompression off
+
+        # OCSP Stapling, only in httpd 2.3.3 and later
+        SSLUseStapling on
+        SSLStaplingResponderTimeout 5
+        SSLStaplingReturnResponderErrors off
+        SSLStaplingCache shmcb:${APACHE_RUN_DIR}/ocsp(128000)
+    </IfDefine>
+    <IfDefine !SSL_CONFIG_MODERN>
+        <IfDefine SSL_CONFIG_INTERMEDIATE>
+            # intermediate configuration, tweak to your needs
+            SSLProtocol all -SSLv3
+            SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
+            SSLHonorCipherOrder on
+            SSLCompression off
+            SSLSessionTickets off
+
+            # OCSP Stapling, only in httpd 2.3.3 and later
+            SSLUseStapling on
+            SSLStaplingResponderTimeout 5
+            SSLStaplingReturnResponderErrors off
+            SSLStaplingCache shmcb:${APACHE_RUN_DIR}/ocsp(128000)
+        </IfDefine>
+        <IfDefine !SSL_CONFIG_INTERMEDIATE>
+            <IfDefine SSL_CONFIG_OLD>
+                # old configuration, tweak to your needs
+                SSLProtocol all
+                SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:DES-CBC3-SHA:HIGH:SEED:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!RSAPSK:!aDH:!aECDH:!EDH-DSS-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA:!SRP
+                SSLHonorCipherOrder on
+                SSLCompression off
+                SSLSessionTickets off
+
+                # OCSP Stapling, only in httpd 2.3.3 and later
+                SSLUseStapling on
+                SSLStaplingResponderTimeout 5
+                SSLStaplingReturnResponderErrors off
+                SSLStaplingCache shmcb:${APACHE_RUN_DIR}/ocsp(128000)
+            </IfDefine>
+            <IfDefine !SSL_CONFIG_OLD>
+                # default debian configuration
+
+                #   SSL Cipher Suite:
+                #   List the ciphers that the client is permitted to negotiate. See the
+                #   ciphers(1) man page from the openssl package for list of all available
+                #   options.
+                #   Enable only secure ciphers:
+                #SSLCipherSuite HIGH:!aNULL
+
+                # SSL server cipher order preference:
+                # Use server priorities for cipher algorithm choice.
+                # Clients may prefer lower grade encryption.  You should enable this
+                # option if you want to enforce stronger encryption, and can afford
+                # the CPU cost, and did not override SSLCipherSuite in a way that puts
+                # insecure ciphers first.
+                # Default: Off
+                #SSLHonorCipherOrder on
+
+                #   The protocols to enable.
+                #   Available values: all, SSLv3, TLSv1, TLSv1.1, TLSv1.2
+                #   SSL v2  is no longer supported
+                SSLProtocol all -SSLv3
+            </IfDefine>
+        </IfDefine>
+    </IfDefine>
+
+    # Pseudo Random Number Generator (PRNG):
+    # Configure one or more sources to seed the PRNG of the SSL library.
+    # The seed data should be of good random quality.
+    # WARNING! On some platforms /dev/random blocks if not enough entropy
+    # is available. This means you then cannot use the /dev/random device
+    # because it would lead to very long connection times (as long as
+    # it requires to make more entropy available). But usually those
+    # platforms additionally provide a /dev/urandom device which doesn't
+    # block. So, if available, use this one instead. Read the mod_ssl User
+    # Manual for more details.
+    #
+    SSLRandomSeed startup builtin
+    SSLRandomSeed startup file:/dev/urandom 512
+    SSLRandomSeed connect builtin
+    SSLRandomSeed connect file:/dev/urandom 512
+
+    ##
+    ##  SSL Global Context
+    ##
+    ##  All SSL configuration in this context applies both to
+    ##  the main server and all SSL-enabled virtual hosts.
+    ##
+
+    #
+    #   Some MIME-types for downloading Certificates and CRLs
+    #
+    AddType application/x-x509-ca-cert .crt
+    AddType application/x-pkcs7-crl    .crl
+
+    #   Pass Phrase Dialog:
+    #   Configure the pass phrase gathering process.
+    #   The filtering dialog program (`builtin' is a internal
+    #   terminal dialog) has to provide the pass phrase on stdout.
+    SSLPassPhraseDialog  exec:/usr/share/apache2/ask-for-passphrase
+
+    #   Inter-Process Session Cache:
+    #   Configure the SSL Session Cache: First the mechanism 
+    #   to use and second the expiring timeout (in seconds).
+    #   (The mechanism dbm has known memory leaks and should not be used).
+    #SSLSessionCache         dbm:${APACHE_RUN_DIR}/ssl_scache
+    SSLSessionCache        shmcb:${APACHE_RUN_DIR}/ssl_scache(512000)
+    SSLSessionCacheTimeout  300
+
+    #   Semaphore:
+    #   Configure the path to the mutual exclusion semaphore the
+    #   SSL engine uses internally for inter-process synchronization. 
+    #   (Disabled by default, the global Mutex directive consolidates by default
+    #   this)
+    #Mutex file:${APACHE_LOCK_DIR}/ssl_mutex ssl-cache
+
+    #   Allow insecure renegotiation with clients which do not yet support the
+    #   secure renegotiation protocol. Default: Off
+    #SSLInsecureRenegotiation on
+
+    #   Whether to forbid non-SNI clients to access name based virtual hosts.
+    #   Default: Off
+    #SSLStrictSNIVHostCheck On
+</IfModule>
+
+# vim: syntax=apache ts=4 sw=4 sts=4 sr noet
--- a/lib/ulib/templates/apacheconfig/sites/default.ssl.conf..d
+++ b/lib/ulib/templates/apacheconfig/sites/default.ssl.conf..d
@ -179,5 +179,12 @@
    # MSIE 7 and newer should be able to use keepalive
    BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown

+    # cf https://wiki.mozilla.org/Security/Server_Side_TLS
+    <IfDefine SSL_CONFIG_HSTS>
+        <IfModule mod_headers.c>
+            # HSTS (15768000 seconds = 6 months)
+            Header always set Strict-Transport-Security "max-age=15768000"
+        </IfModule>
+    </IfDefine>
 </VirtualHost>
 </IfModule>
--- a/lib/ulib/templates/apacheconfig/sites/default.ssl.conf..d8
+++ b/lib/ulib/templates/apacheconfig/sites/default.ssl.conf..d8
@ -133,5 +133,12 @@
    # MSIE 7 and newer should be able to use keepalive
    BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown

+    # cf https://wiki.mozilla.org/Security/Server_Side_TLS
+    <IfDefine SSL_CONFIG_HSTS>
+        <IfModule mod_headers.c>
+            # HSTS (15768000 seconds = 6 months)
+            Header always set Strict-Transport-Security "max-age=15768000"
+        </IfModule>
+    </IfDefine>
 </VirtualHost>
 </IfModule>