Displaying 1 result from an estimated 1 matches for "tls_rsa_with_des_cbc_sha".
2014 Dec 02
2
disabling certain ciphers
...till get some ciphers that show up as "weak", e.g.,
| SSLv3:
| ciphers:
| TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA - strong
| TLS_DHE_RSA_WITH_AES_128_CBC_SHA - strong
| TLS_DHE_RSA_WITH_AES_256_CBC_SHA - strong
| TLS_DHE_RSA_WITH_DES_CBC_SHA - weak
[....]
| TLS_RSA_WITH_DES_CBC_SHA - weak
Is there a way to exclude these ciphers, while still keeping my config
easy to parse and avoiding duplicative or deprecated configs?
The behavior is also pretty strange; if I have something like one of the
following, with or without $ssl_protocols set to exclude SSLv2 and SSLv3:
ssl_ciphe...