Very recently I upgraded my Bluehost account to a VPS and am coming up the learning curve. Eventually I will figure out how to install and use the LE client but for now I generated a certificate using https://gethttpsforfree.com/ and installed it using the WHM interface.
I then looked at the following test page with Firefox and saw a green padlock. Sweet. https://findmesar.com/test/911-wireless-location-accuracy.html
Then I ran the page through ssllabs which complained that my cipher suite included RC4. So using WHM I went to Apache Configuration ==> SSL Cipher Suite and saw 2 choices. The first choice is hardcoded and the second choice is in an edit box and thus can be changed.
The cipher suite in the edit box was selected. OK, time for me to ’fess up that I am using XP SP3. (Will upgrade to win 10 this fall).
Rats! I must have been asleep. I forgot to save the initial cipher suite that was in that edit box before I replaced it with something else in an attempt to nuke RC4. Dumb!
Now every cipher suite I try in that edit box results in a “forbidden” message when I try to view my test page with Forefox or Chrome. And of course I neglected to save the original cipher suite (gives self swift kick).
When I installed the LE certificate did that process write a cipher suite into that edit box and, if so, what is that suite?
Is it necessary to reinstall the certificate after changing the cipher suite and restarting apache?
Can a bad cipher suite be the cause of the “forbidden” message I see when I try to look at my test page?