Maxim Dounin
November 15, 2018 01:26PM
Hello!

On Thu, Nov 15, 2018 at 12:17:39PM -0500, kmansoft wrote:

> Cross posting from https://unix.stackexchange.com/questions/481963, this
> seems to be the better place to ask.
>
> ---
>
> Just updated Debian from "stable" 9.* to "testing" 10.*.
>
> Have nginx 1.14 - used to come from "stable backports" now included in
> Debian itself.
>
> Seeing a strange issue with TLS versions in nginx.
>
> TLS 1.3 is enabled, and 1.2 is too, but I can't seem to get TLS 1.0 / 1.1
> even though they're included in nginx configs.

[...]

Upgrade to nginx 1.15.3+, this problem is expected to be addressed by
this commit:

http://hg.nginx.org/nginx/rev/7ad0f4ace359

Alternatively, you can modify (and/or disable via the OPENSSL_CONF
environment variable specifically for nginx) system-wide OpenSSL
configuration file which disables protocols before TLS 1.2.

--
Maxim Dounin
http://mdounin.ru/
_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Subject Author Posted

Enabling TLS 1.0 / 1.1 on Debian Testing

kmansoft November 15, 2018 12:17PM

Re: Enabling TLS 1.0 / 1.1 on Debian Testing

Maxim Dounin November 15, 2018 01:26PM

Re: Enabling TLS 1.0 / 1.1 on Debian Testing

kmansoft November 16, 2018 04:48AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 86
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready