LoadModule ssl_module modules/mod_ssl.so 
Listen 443 
AddType application/x-x509-ca-cert .crt 
AddType application/x-pkcs7-crl    .crl 
SSLPassPhraseDialog  builtin 
SSLSessionCache         shmcb:/var/cache/mod_ssl/scache(512000) 
SSLSessionCacheTimeout  300 
SSLMutex default 
SSLRandomSeed startup file:/dev/urandom  256 
SSLRandomSeed connect builtin 
SSLCryptoDevice builtin 

NameVirtualHost *:443 

# offに設定（SNIに未対応のブラウザ用） 
SSLStrictSNIVHostCheck off 

<VirtualHost *:443> 
    ServerName centos66
    DocumentRoot "/var/www/html" 

    <Directory "/var/www/html"> 
        Options FollowSymLinks 
        AllowOverride None 
    </Directory> 
         
    SSLEngine on 
    SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
    SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW 
    SSLCertificateFile /etc/pki/tls/certs/server.crt 
    SSLCertificateKeyFile /etc/pki/tls/certs/server.key 

    SetEnvIf Request_URI "\.(gif|jpg|png|css|js)$" nolog 
    ErrorLog logs/centos66_error_log 
    CustomLog logs/centos66_access_log combined env=!nolog 
</VirtualHost>