Remove less secure ciphers from WHM by decrpyting different convoluted references to the same ciphers

I have previously removed less secure ciphers from WHM (Web Host Manager) however it has been a while and I want to learn how to fish, not be handed a fish.

The trouble seems to stem from the fact that there is little-to-no consistency in how ciphers are referenced or even where they are defined.

WHM Cipher Definitions

Ciphers seem to be listed in two places: Exim Configuration Manager and Apache Configuration ⇨ Exim Configuration Manager.

  • The Apache Configuration has a field “SSL/TLS Protocols” which is currently defined as ALL:!ADH:!AECDH:!EDH:!RC4:+HIGH:+MEDIUM:-LOW:-EXP.
  • The Exim Configuration Manager currently has a field “SSL/TLS Cipher Suite List” which is set to ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256.

Definition of Weak Ciphers

Here is the SSL Labs test for my domain. I have everything except TLS 1.2 and TLS 1.3 disabled and many less secure ciphers disabled. The test lists the following ciphers as being weak:

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013) ECDH x25519 (eq. 3072 bits RSA) FS WEAK 128 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014) ECDH x25519 (eq. 3072 bits RSA) FS WEAK 256 TLS_RSA_WITH_AES_128_GCM_SHA256 (0x9c) WEAK 128 TLS_RSA_WITH_AES_256_GCM_SHA384 (0x9d) WEAK 256 TLS_RSA_WITH_AES_128_CBC_SHA (0x2f) WEAK 128 TLS_RSA_WITH_AES_256_CBC_SHA (0x35) WEAK 256 

I attempted to “translate” though after updating the values in both sections and running cPanel’s AutoSSL I still got the same results on the test.

Translating Cipher References

I attempted to reference the TLS 1.2 standard as well as some documentation from OpenSSL. I made numerous other search queries and spent hours reading through documentation, standards and forums without luck.

Here is my attempt to make the lists look more similar to each other:

From the Exim Configuration Manager:

  • ECDHE_ECDSA_CHACHA20_POLY1305
  • ECDHE_RSA_AES128_GCM_SHA256
  • ECDHE_RSA_AES256_GCM_SHA384
  • ECDHE_RSA_AES128_SHA256
  • ECDHE_RSA_AES256_SHA384
  • ECDHE_RSA_CHACHA20_POLY1305

From the SSL Labs Test to be removed:

  • ECDHE_RSA_WITH_AES_128_CBC_SHA
  • ECDHE_RSA_WITH_AES_256_CBC_SHA
  • RSA_WITH_AES_128_GCM_SHA256
  • RSA_WITH_AES_256_GCM_SHA384
  • RSA_WITH_AES_128_CBC_SHA
  • RSA_WITH_AES_256_CBC_SHA

The list says to remove two ECDHE and the rest don’t have ECDHE. In that example how do I remove something not defined? Secondly it suggests removing CBC though that is not defined in the first list.

Desirable Answer Format

Learning is the detection of patterns so I’m really looking for an answer with a table where column A lists the ciphers from the SSL Labs test and column B references how they are referenced (to be defined (for stronger ciphers) and disabled for weaker ciphers). Just enough that I can detect the pattern of how the test references the same ciphers as Apache (or whichever software directly handles all of this). A good reference URL with such a table (and where on the page if it’s more than just a few paragraphs) would be very helpful.

It would also be incredibly useful to know how to have the server define a preferred cipher and to know which is considered the strongest if possible please.

What changes if game starts with less maximum HP

The book uses Constitution score, not modifier for determining maximum HP:

Your maximum HP is equal to your class’s base HP + Constitution score. You start with your maximum HP.

Maximum HP is quite high for player characters — usually it’s 15-20, while the possible maximum is 26 (minimum is 12). For comparison, typical monsters have 6-8 HP, solitary dangerous ones has 12-14, and a dragon has 16. Considering healing magic, it becomes really hard to die exclusively from the HP loss in one fight.

I’ve seen a game once when the GM messed up and uses the modifier instead. Surprisingly, the game was fun and exciting — having less hit points encouraged players to be less reckless, to prepare better, to care about each other’s health and search for more tactical approach in fights. That makes me wonder if this was a horrible mistake or a brave idea. Now I’m thinking about getting such an experience in my own game.

As a GM, what changes should I expect starting the game with less maximum HP for player characters?

Or is it really a bad idea that shouldn’t really work?

Which is less trackable by online services, using a SIM card or free wifi?

I cannot do anything about government agencies, but I doubt that they are interested in me.

I do not like the idea of Google, FaceTweet, etc, compiling data on me.

What’s the best way to prevent them doing so, if I purchase a smartphone – buy a pay as you go (unregistered) SIM, or use only public WiFi? Would a Linux ‘phone make a major difference?

How to check equality between any two 2-dimensional arrays (matrices) with time complexity less than O(n^2)?

Suppose, there are three matrices – A[3][2] : {{1,2},{3,4},{5,6}} ; B[3][2] : {{1,2},{3,4},{5,6}} ; C[3][2] : {{2,1},{3,4},{5,6}} . Here A=B , A!=C and B!=C .

So, task is to check equality between all the possible combinations of 2-dimensional matrices from a given set of matrices with time complexity less than O(n^2) .Here the possible combinations are (A,B) , (A,C) and (B,C).

( As part of the solution , can we represent 2-dimensional matrices with a certain value/string/array which will reduce the time complexity of equality comparison ? )

How to help new-ish players perform less linearly in encounters?

Quick encounter reference guide https://crobi.github.io/dnd5e-quickref/preview/quickref.html has so many possible options for players to take. Even then, the option for diplomacy, roleplaying, and imagination are endless in dnd.

With that said, the last couple homebrew fights have the players attacking first, asking questions later, and just running into the enemies without much thought, rolling off attacks, and using their combat spells in the exact same order each time like a recipe. They don’t even move much in the fight as positioning isn’t a concern for them. Barely surviving but them feeling like “well the fight we either roll well, or die if we roll poorly.” Rather than thinking and trying out other possibilities, utility spells, positioning, imaginative problem solving.

I’ve considered adding environmental obstacles, traps, more dialogue-related enemies, and problems to solve. Maybe them failing, and learning from mistakes is one way to help them learn.

It’s also not just about throwing a bunch of text of them to read, telling them to watch a dnd podcast to get ideas, or adding “new” things, as it is about themselves realising themselves new methods to approach encounters, and trying out new things.

What are some good strategies to help foster this imagination in an organic way that doesn’t involve me telling them to do mandatory homework?

Does NP $\cap$ coNP less difficult than NP-complete?

I am taking a complexity class now, and I struggle to understand the concept of “hardness”:
Assume that $ L \in \textit{NP } \cap \textit{ coNP}$ . In means that under the assumption $ NP \neq coNP$ , $ L$ cannot be NP-complete. The formal meaning is that not all languages in NP can be reduced to $ L$ , but does it mean that $ L$ is easier to solve than NP-complete language (in the sense that it is more likely to have non-exponential algorithm which decides it)?
Does is plausible that the optimal algorithm for $ L$ is exponential? (For 3-SAT there is a known assumption, ETH, which as far as I understand states that the optimal algorithm for it has to be exponential).

We Want Nothing Less Than Your Absolute Satisfaction

It’s been a busy few weeks for London-based Foot Patrol. After opening their newest retail location in Paris, they’ve now teamed up with asics clothing outlet for a special take on a well-known sneaker: the ASICS GEL-Saga. The legendary running silhouette—first released in 1991—originally drew its design inspiration from the mech characters featured in the classic anime series Gundam Wing.This heratage-inspired collaboration is drawing from that original vision even further, dressing the shoe in a combination of white, grey, blue, and just a touch of pink-just like a Gundam mobile suit’s color scheme. The shoe utilizes white mesh underlays and light grey suede overlays as a base, while the main accents arrive via pearlecent blue and silver patent leather detailing on the iconic tiger stripe. Co-branded accents arrive on the medial heel counter and throat, a medium grey tongue and heel collar add a pinch of dark contrast, and the shoe is completed with pink lace tips boasting a mech-style model number.
</br></br>
Above you will get another look at the latest collab release between Patta and asics appatel stores, the Patta x Asics Gel Lyte. The collab has the Gel Lyte dressed in a Grey, Honey Ginger and Dark Purple color scheme. The shoe is constructed out of premium nubuck, suede and mesh combination while also coming with features such as the co-branded tongue and graphic detailing on the insole, perforation hits on the toe, a total of three different tonal lace options, and the Patta lace dubrae done in Rose Gold. In addition, every pair comes with a custom Asics x Patta hangtag to complete the collaborative look and feel of the shoe. 
</br></br>
Rocking autumn vibes from head to toe, today we provide you with new images and release info on the upcoming asics men’s clearance.This latest collab between the two comes dressed in a Grey, Honey Ginger and Dark Purple color scheme. Constructed out of nubuck, suede and mesh, the shoe comes with features such as the co-branded tongue and graphic detailing on the insole, perforation hits on the toe, and the  Patta lace dubrae in Rose Gold. Every pair comes with a custom Asics x Patta hangtag and additional sets of Pink and Ginger Honey laces.
</br></br>
Having dropped overseas just last month, the asics womens clearance has now made its way stateside.Inspired by the Yokosuka jacket, a popular souvenir among American military in Japan, the BEAMS x mita sneakers x Asics Gel Lyte 3 Souvenir Jacket is made of navy pigskin nubuck and velour on the upper, while the heel features an embroidered dragon patch and ‘Japan’ is embroidered on the side in original script. The outer sole is also inspired by the dragon and features an original graphic.