http://httpd.apache.org/docs/trunk/mod/mod_ssl.html#sslciphersuite >Available prefixes are: >none: add cipher to list >+: add ciphers to list and pull them to current location in list http://www.openssl.org/docs/apps/ciphers.html >If + is used then the ciphers are moved to the end of the list. This option doesn't add any new ciphers it just moves matching existing ones. >If none of these characters is present then the string is just interpreted as a list of ciphers to be appended to the current preference list. If the list includes any ciphers already present they will be ignored: that is they will not moved to the end of the list. What actually happens seems to match the OpenSSL documentation and not the Apache documentation.
Confirmed - trunk patch applied in r1307670.
Corrected in... 2.4 => r1307699 2.2 => r1307698 2.0 => r1307700 trunk => r1307670