"nginx does not suck at ssl"
Grant
emailgrant at gmail.com
Sun Mar 10 21:41:12 UTC 2013
> one quote from that post i can confirm:
>
>> nobody has any idea how SSL performance works
>
> esp. when it comes to CIPER1 vs CIPHER, compared
> oin terms of speed and security.
>
> what i can suggest to test if your ssl-implementation is stil
> secure from a cipher-pov is
> https://www.ssllabs.com/ssltest/
All things considered, do you think it's best to leave ssl_ciphers default?
- Grant
>> After reading "nginx does not suck at ssl":
>>
>> http://matt.io/entry/ur
>>
>> I'm using:
>>
>> ssl_ciphers
>> ALL:!aNULL:!ADH:!eNULL:!MEDIUM:!LOW:!EXP:!kEDH:RC4+RSA:+HIGH;
>>
>> Is this a good choice?
>>
>> - Grant
More information about the nginx
mailing list