Re: Weak Diffie-Hellman default in nginx port

lophos Tue, 21 Jul 2015 05:18:03 -0700

El Tue, 21 de Jul de 2015, a las 12:55:42PM +0200, Denis Fondras dijo:
> On Tue, Jul 21, 2015 at 12:31:33PM +0200, lophos wrote:
> > The nginx config (although disabled by default) supports weak Diffie 
> > Hellman cipher according to ssllabs.com test 
> > (Grade B).
> > 
> 
> You'd better generate stronger DH-param than disable DHE.
>


I'm using the default config. This goes against the Secure by Default policy.

Re: Weak Diffie-Hellman default in nginx port

Reply via email to