I'm not sure if it's possible to use TLS without a certificate in nginx,
but you can use OpenSSL to generate a CA certificate and server
certificate and deploy it to nginx, as well as trust the CA certificate
in the client:
https://mariadb.com/docs/xpand/security/data-in-transit-encryption/c
2 on the first 443 server
segment and only use TLS 1.3, then the other servers are also TLS 1.3 only.
It seems that ssl_ciphers, ssl_dhparam, ssl_early_data, ssl_protocols,
ssl_session_cache, and ssl_session_timeout all have inheritance.
Is this normal?
Best regard
e preferred order
for the server.
As far as I know, the full list of nginx support should be x25519, x448,
secp256r1, secp384r1, secp521r1.
So what caused the difference in "ssl_ecdh_curve auto;"?
Best regards,
wordlesswind
Posted at Nginx Forum:
https://forum.nginx.org/
Hello,
I noticed that after Chromium 594356 build (71.0.3563.0) it favors RSA
certificates over ECC certificates.
Windows x86-64:
https://commondatastorage.googleapis.com/chromium-browser-snapshots/index.html?prefix=Win_x64/594356/
https://commondatastorage.googleapis.com/chromium-browser-
d that the latest version of Google
Chrome/Microsoft Edge will choose to get RSA certificate instead of ECC
certificate.
RSA 4096 R3
ECC 384 E1
Issuer Let's Encrypt
I wonder why Chromium made this choice. Thank you!
Best Regards,
wordlesswind
___
Hello,
I noticed that the certificate of quic.nginx.org has expired.
Best Regards,
wordlesswind
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
