Welcome! Log In Create A New Profile


Allow Client Certificate Signature Selection

Posted by d-s-mvg 
Allow Client Certificate Signature Selection
February 09, 2017 04:24AM
Hi guys,

I was wondering if a setting to controll allowed signatures for client certificates would be a valuable addition to nginx's "ngx_http_ssl_module"?

Currently there is no way (or is there?) to restrict client-certifiicates to something like "sha256WithRSAEncryption". The consequence is that you cannot specify to not trust users with certificates that are signed by weak signature algorithms. (Just like modern browser do this with server-certificates that are signed with weak signature algorithms)

Sincerly yours,
Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 248
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready