better approach for folks is to understand their visitors os/browser usage and adopt your ssl cipher preferences accordingly HOWTO: A+ with all 100%'s on SSL Labs test using apache2.4 (READ WARNINGS) - #4 by eva2000 i.e. if you have 80% users on winxp you don't want to disable SSLv3 and implement SSL ciphers than aren't supported.