SSL ciphers, disable or not to disable RC4?
ar at xlrs.de
Sun Jan 12 17:42:18 UTC 2014
I juggled around with ssl ciphers and tried to disable RC4, but still be
able to serve IE under WinXP.
Those ciphers are my choice - if anyone has 'better' ciphers or prefers
another order i am pleased to hear...
You can test your ciphers online at https://www.ssllabs.com
Am 9.1.2014 10:29, schrieb Pekka.Panula at sofor.fi:
> My current values in my nginx configuration for ssl_protocols/ciphers
> what i use is this:
> ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
> ssl_ciphers RC4:HIGH:!aNULL:!MD5;
> ssl_prefer_server_ciphers on;
> What are todays recommendations for ssl_ciphers option for supporting
> all current OSes and browsers, even Windows XP users with IE?
> Can i disable RC4?
> My nginx is compiled with OpenSSL v1.0.1.
> nginx mailing list
> nginx at nginx.org
More information about the nginx