[micro-ram]

These settings are giving me an A+ on SSLLabs.com...

  # - Apache 2.4 PFS & BEAST attack Safe   /etc/apache2/mods-enabled/ssl.conf
    SSLProtocol -ALL +SSLv3 +TLSv1 +TLSv1.1 +TLSv1.2
    SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:!RC4:HIGH:!MD5:!aNULL:!EDH
    SSLHonorCipherOrder on
    SSLCompression off

  # - HSTS Apache directive to force SSL (.htaccess or per site in control panel)
	Header always set Strict-Transport-Security "max-age=15552000"
	RewriteEngine On
	RewriteCond %{HTTPS} off
	RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [NC,R=301,L]

[fmx]

I tried that cipher suite list with Apache 2.2 and got my grade reduced from A to A-:

The server does not support Forward Secrecy with the reference browsers. Grade reduced to A-

Maybe I need to upgrade to Apache 2.4.

[micro-ram]

Yes, upgrade Apache. These settings are for Apache 2.4

[schneid]

Note that you shouldn't send the STS header for http:// responses: http://tools.ietf.org/html/rfc6797#section-7.2