[openssl-users] To disable CBC ciphers
Kaushal Shriyan
kaushalshriyan at gmail.com
Wed Oct 17 06:25:38 UTC 2018
Hi,
I have the below ssl settings in nginx.conf file and VAPT test has reported
us to disable CBC ciphers
ssl_ciphers HIGH:!aNULL:!MD5:!DH+3DES:!kEDH;
> ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
openssl version on the box is OpenSSL 1.0.2k-fips 26 Jan 2017 on CentOS
Linux release 7.3.1611 (Core)
I will appreciate if someone can pitch in to help me understand to disable
CBC ciphers
Best Regards
Kaushal
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20181017/1327f061/attachment.html>
More information about the openssl-users
mailing list