Welcome! Log In Create A New Profile

Advanced

SSL default changes?

This forum is currently read only. You can not log in or make any changes. This is a temporary situation.
Grant
March 11, 2013 12:50AM
It looks like these changes from default are required for SSL session
resumption and to mitigate the BEAST SSL vulnerability:

ssl_session_cache shared:SSL:10m;
ssl_ciphers RC4:HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;

Should the defaults be changed to these?

- Grant

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Subject Author Posted

SSL default changes?

Grant March 11, 2013 12:50AM

Re: SSL default changes?

Maxim Dounin March 11, 2013 06:54AM

Re: SSL default changes?

Grant March 11, 2013 03:38PM

Re: SSL default changes?

Maxim Dounin March 12, 2013 05:50AM

Re: SSL default changes?

Grant March 12, 2013 03:00PM

Re: SSL default changes?

Maxim Dounin March 12, 2013 07:02PM



Online Users

Guests: 308
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 500 on July 15, 2024
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready