Updated to PFS only configs for Nginx & Apache2

[MorganDavis]

This is based upon recommendation from Qualys...which seems pretty reasonable.

[micahflee]

The Apache config isn't valid:

SSLCipherSuite SSLCipherSuite EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS

It says SSLCipherSuite twice, and it's space-separated instead of colon-separated, and the ciphers are connected with pluses instead of dashes, so if you put this in an Apache config it fails saying: SSLCipherSuite takes one argument, Colon-delimited list of permitted SSL Ciphers (XXX:...:XXX' - see manual)`

Changing that line to this seems to work, but for some reason the Qualys test still says PFS is disabled:

SSLCipherSuite EECDH-ECDSA-AESGCM:EECDH-aRSA-AESGCM:EECDH-ECDSA-SHA384:EECDH-ECDSA-SHA256:EECDH-aRSA-SHA384:EECDH-aRSA-SHA256:EECDH-aRSA-RC4:EECDH:EDH-aRSA:RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS

[ioerror]

If this is updated to take @micahflee's comment into account, I'll merge it.

[MorganDavis]

It has not been updated yet, but I expect to in the next few days and will notify.

[Strubbl]

@MorganDavis Next days are over?

Also RC4 should be disabled.