better security settings in created vhosts under ISP
After create LE SSL/SSL for particular domain/subdomain/alias probably too (not tested), in vhost appear <VirtualHost *:443> inside which are few lines which should be improved:
SSLProtocol All -SSLv2 -SSLv3 //TLS 1.2 only
- currently commented lines:
Header always add Strict-Transport-Security "max-age=15768000"
SSLCipherSuite
- add options:
SSLCompression off
SSLSessionTickets off