diff --git a/config.template.yaml b/config.template.yaml
index abbfedb3..b9074f31 100644
--- a/config.template.yaml
+++ b/config.template.yaml
@@ -79,6 +79,7 @@ https:
   passphrase: ''
   certfile: 'localhost.cert'
   cafile: ''
+  ciphers: 'HIGH:!DSS:!aNULL@STRENGTH'
 
 # Page template values
 # title goes in the upper left corner, description goes in a <meta> tag
diff --git a/lib/config.js b/lib/config.js
index cdab3806..72a8635a 100644
--- a/lib/config.js
+++ b/lib/config.js
@@ -43,7 +43,8 @@ var defaults = {
         keyfile: "localhost.key",
         passphrase: "",
         certfile: "localhost.cert",
-        cafile: ""
+        cafile: "",
+        ciphers: "HIGH:!DSS:!aNULL@STRENGTH"
     },
     io: {
         domain: "http://localhost",
diff --git a/lib/server.js b/lib/server.js
index 11010575..01e93ff2 100644
--- a/lib/server.js
+++ b/lib/server.js
@@ -72,7 +72,9 @@ var Server = function () {
         key: key,
         cert: cert,
         passphrase: Config.get("https.passphrase"),
-        ca: ca
+        ca: ca,
+        ciphers: Config.get("https.ciphers"),
+        honorCipherOrder: true
     };
 
     Config.get("listen").forEach(function (bind) {