TLS 1.1 and 1.2 require nginx be built against the 1.0.1 branch of
OpenSSL, or the subsequent Libre and Boring forks of it. Odds are high that if
you have servers running the old 0.8.x branch of nginx it is also running the
old 0.9.8 branch of OpenSSL. As for whether or not it’s okay to run
I have abut 10 nginx servers, versions 1.0.15 and 0.8.55.
I am patching for the poodle, so:
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
is accept by nginx 1.0.15 but not 0.8.55
I would prefer to use just TLSv1 on 0.8.55 if using just TLSv1 is okay.
Or would upgrading the nginxs be required ?
I dont
