Welcome! Log In Create A New Profile

Advanced

ssl_ciphers explained

Posted by Nickless 
Forum List Message List New Topic
Nickless
ssl_ciphers explained
January 10, 2018 02:00AM
Hi,

This may sound like a stupid questions, but I have not found any clear answers to it.
Could someone explain the ssl_ciphers options in nginx?

For example ''ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256'.

I have read that you should disable RSA due to the ROBOT vulnerability (https://robotattack.org/). Does that mean that I should remove all the ciphers above that contains RSA?

And does for example the cipher 'ECDHE-ECDSA-CHACHA20-POLY1305' mean in which order messages are encrypted?

Thanks for any answers!



Edited 1 time(s). Last edit at 01/10/2018 02:00AM by Nickless.
Reply Quote
Newer Topic Older Topic
Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 116
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready