Welcome! Log In Create A New Profile

Advanced

Re: nginx 0.7.65 and TLS1.2

Sergey Kandaurov
May 15, 2020 06:18AM
> On 15 May 2020, at 12:43, Marko Domanović <marko@vizio.biz> wrote:
>
> Long story short, I need nginx 0.7.65 to be able to support TLS1.2.
> Seems like it's dependent on openssh version and installed one is 1.0.1t
> which seem to support TLS1.2, but "nmap --script ssl-enum-ciphers -p 443
> sitename" says only SSLv3 and TLS1.0 are supported. So is there anything
> I can to to make nginx 0.7.65 recognize TLS1.2 and use it?
>

Technically, you could.
You just won't be able to disable this protocol in configuration.

$ printf "GET / HTTP/1.0\n\n" | openssl s_client -connect 127.0.0.1:8081 -ign_eof
...
New, TLSv1.2, Cipher is DHE-RSA-AES256-GCM-SHA384
...
HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Fri, 15 May 2020 10:14:17 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Fri, 15 May 2020 10:12:53 GMT
Connection: close
Accept-Ranges: bytes

$ ./objs/nginx -V
nginx version: nginx/0.7.65
TLS SNI support enabled

--
Sergey Kandaurov

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Subject Author Posted

nginx 0.7.65 and TLS1.2

Marko Domanović May 15, 2020 05:44AM

RE: nginx 0.7.65 and TLS1.2

Reinis Rozitis May 15, 2020 06:08AM

Re: nginx 0.7.65 and TLS1.2

Sergey Kandaurov May 15, 2020 06:18AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 66
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready