Use of boringssl equal-preference cipher groups with nginx
alex at zeitgeist.se
Sat Aug 23 18:38:05 UTC 2014
On 2014-08-18 09:17, Alex wrote:
> I have successfully compiled nginx/1.7.4 with boringssl. One thing I
> am not sure if it's possible already is to take advantage of
> equal-preference cipher groups that Boringssl supports.
> Would this already work with nginx' ssl_ciphers parameter or would
> nginx require further patching to support such grouping parameter?
I feel kinda stupid that I didn't figure it out earlier. Of course it's
possible out of the box with nginx/boringssl. I made a small writeup
Basically, you group ciphers in the ciphers list like this:
More information about the nginx