Welcome! Log In Create A New Profile

Advanced

Allow Client Certificate Signature Selection

Posted by d-s-mvg 
Allow Client Certificate Signature Selection
February 09, 2017 04:24AM
Hi guys,

I was wondering if a setting to controll allowed signatures for client certificates would be a valuable addition to nginx's "ngx_http_ssl_module"?

Currently there is no way (or is there?) to restrict client-certifiicates to something like "sha256WithRSAEncryption". The consequence is that you cannot specify to not trust users with certificates that are signed by weak signature algorithms. (Just like modern browser do this with server-certificates that are signed with weak signature algorithms)

Sincerly yours,
d-s-mvg
Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 76
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready