After a bit of procrastinating, I finally updated SSL.

“A” rating after some tweaks

The main change was to remove the use of insecure protocols; TLS 1.0 and 1.1.

I also updated the ciphers to a more modern set, as recommended by the Mozilla SSL Config Generator. I’d highly recommend that as a starting point if you manage your own web servers. Suffice to say, my SSL Labs rating climbed to an A after these tweaks.

Below is what it was before.

SSL Labs not happy about the ancient protocols.