Welcome! Log In Create A New Profile

Advanced

About ssl_ecdh_curve auto

Previous Message Next Message
Forum List Message List New Topic Print View
wordlesswind
October 25, 2022 11:25AM
Hello guys,

I deployed ECDSA P-256 certificate issued by Let's Encrypt E1 on nginx, and I noticed something about "ssl_ecdh_curve auto;".

When I set ssl_protocols to "TLSv1.2 TLSv1.3", ssl_ecdh_curve has only prime256v1. When set to TLSv1.3, x448 is missing and is the preferred order for the server.

As far as I know, the full list of nginx support should be x25519, x448, secp256r1, secp384r1, secp521r1.

So what caused the difference in "ssl_ecdh_curve auto;"?

Best regards,
wordlesswind
Reply Quote
RSS
Subject Author Posted

About ssl_ecdh_curve auto

wordlesswind October 25, 2022 11:25AM

Re: About ssl_ecdh_curve auto

Sergey A. Osokin October 25, 2022 11:24PM

Re: About ssl_ecdh_curve auto

Maxim Dounin October 26, 2022 12:26AM

Re: About ssl_ecdh_curve auto

Maxim Dounin October 26, 2022 12:08AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

hackermade
Guests: 295
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready