<IfModule mod_ssl.c><VirtualHost *:443> # Add Strict Transport Security

1. <IfModule mod_ssl.c>
2. <VirtualHost *:443>
3. # Add Strict Transport Security
4. Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
5.  
6. # Admin email, Server Name (domain name), and any aliases
7. ServerAdmin email@email.com
8. ServerName websitename.com
9. ServerAlias www.websitename.com
10.  
11. # Index file and Document Root (where the public files are located)
12. DirectoryIndex index.html index.php
13. DocumentRoot /var/www/html/websitename.com/public_html
14. # Log file locations
15. LogLevel warn
16. ErrorLog /var/www/html/websitename.com/log/error.log
17. CustomLog /var/www/html/websitename.com/log/access.log combined
18.  
19. Include /etc/letsencrypt/options-ssl-apache.conf
20. SSLCertificateFile /etc/letsencrypt/live/websitename.com/fullchain.pem
21. SSLCertificateKeyFile /etc/letsencrypt/live/websitename.com/privkey.pem
22.  
23. # Include Cipher Suites
24. SSLProtocol -ALL +TLSv1.2
25. SSLHonorCipherOrder Off
26. SSLCipherSuite ECDH+AESGCM:ECDH+CHACHA20:ECDH+AES256:ECDH+AES128:!aNULL:!SHA1:!AESCCM
27. </VirtualHost>
28. </IfModule>
29.