You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The difference there being SSLv3 is disabled, re: poodle attack etc.
I can make a PR if it helps.
This is tested with Nginx 1.10.0 on Ubuntu from nginx.org repos. Upload/microcache lua functionality is removed in this build, so I'll look at that another time.
The text was updated successfully, but these errors were encountered:
For http2 sites to load in latest builds of Chrom/e/ium (using, for example, Let's Encrypt/certbot certs) the line in nginx.conf:
ssl_ciphers ECDH+aRSA+AESGCM:ECDH+aRSA+SHA384:ECDH+aRSA+SHA256:ECDH:EDH+CAMELLIA:EDH+aRSA:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:!SEED:!ECDSA:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-SHA:AES128-SHA;
should be:
ssl_ciphers
ECDH+aRSA+AESGCM:ECDH+aRSA+SHA384:ECDH+aRSA+SHA256:ECDH:EDH+CAMELLIA:EDH+aRSA:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:!SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:!SEED:!ECDSA:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-SHA:AES128-SHA;
The difference there being SSLv3 is disabled, re: poodle attack etc.
I can make a PR if it helps.
This is tested with Nginx 1.10.0 on Ubuntu from nginx.org repos. Upload/microcache lua functionality is removed in this build, so I'll look at that another time.
The text was updated successfully, but these errors were encountered: