https-portal icon indicating copy to clipboard operation
https-portal copied to clipboard
verified publisher icon SteveLTN

Add ECDSA ciphers for TLSv1.2

Open sarisia opened this issue 3 years ago • 1 comments

Current nginx template for ssl sites does not have ssl_ciphers for ECDSA server certs + TLSv1.2 so using ECDSA certs results in No common ciphers error in clients.

This PR fixes:

  • Add ECDSA ciphers for TLSv1.2
  • Drop ciphers for TLSv1.1 and SSLv3 since these protocols are already dropped in fs_overlay/var/lib/nginx-conf/nginx.conf.erb

Partially fixes #302

sarisia avatar Nov 11 '22 20:11 sarisia

Thanks! Crazy busy with my work, will check it later!

SteveLTN avatar Nov 16 '22 09:11 SteveLTN

1.23.0 is released and includes this PR. Thanks for the help!

SteveLTN avatar Jan 29 '23 15:01 SteveLTN