Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
H
H
hodik2014-01-14 16:25:31
OpenSSL
hodik, 2014-01-14 16:25:31

How to enable TLSv1.1 and TLSv1.2 support on Ubuntu 12.04?

Installed nginx 1.4.4:

ssl_protocols  TLSv1.1 TLSv1.2 TLSv1 SSLv3;
  ssl_ciphers  DHE-RSA-CAMELLIA256-SHA:DHE-RSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:DES-CBC3-SHA:!ADH:!aNULL;

and set up SSL for the host. But, unfortunately, the connection is still established via the SSLv3 protocol and occasionally via TLSv1. This is necessary to activate perfect forward secrecy .

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Alexander Chekalin, 2014-04-12
@achekalin

Except
it is necessary, as far as I remember,
it indicates that server ciphers are more priority than client ones.
And how is nginx itself assembled: by hand, or from the repository?

Similar questions
A
Alukardd2013-02-07 13:38:47
OpenSSL: sign root certificate? 4Reply
C
cython2020-06-30 12:33:56
What libraries are needed to link OpenSSL? 1Reply
S
sflyer2018-07-10 12:27:00
Php+gost how to specify a patch before compiling? 0Reply
K
Keffer2018-07-12 13:55:57
Self-create EV SSL certificate with open SSL? 4Reply
I
Ivan Shysterov2020-07-27 19:49:11
Error: invalid use of incomplete type 'EVP_PKEY' {aka 'struct evp_pkey_st'}? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question