SSL:修订间差异
跳到导航
跳到搜索
此页面具有访问限制。如果您看见此消息,则说明您没有权限访问此页面。
(→設定) |
(→設定) |
||
第5行: | 第5行: | ||
<pre>CHACHA20+ECDHE:AESGCM+ECDHE:AES+ECDHE:CAMELLIA+ECDHE:!ADH:!AECDH:!DSS:!ECDSA:!MD5:!SHA1</pre> | <pre>CHACHA20+ECDHE:AESGCM+ECDHE:AES+ECDHE:CAMELLIA+ECDHE:!ADH:!AECDH:!DSS:!ECDSA:!MD5:!SHA1</pre> | ||
如果要考慮到舊的瀏覽器,拿掉 SHA1 限制: | 如果要考慮到舊的瀏覽器,拿掉 SHA1 限制 ,並且指定(在配合[[nginx]]時使用) : | ||
<pre>CHACHA20+ECDHE:AESGCM+ECDHE:AES+ECDHE:CAMELLIA+ECDHE:!ADH:!AECDH:!DSS:!ECDSA:!MD5</pre> | <pre>CHACHA20+ECDHE:AESGCM+ECDHE:AES+ECDHE:CAMELLIA+ECDHE:!ADH:!AECDH:!DSS:!ECDSA:!MD5:@SECLEVEL=1</pre> | ||
== 外部連結 == | == 外部連結 == | ||
* [https://mozilla.github.io/server-side-tls/ssl-config-generator/ Generate Mozilla Security Recommended Web Server Configuration Files] | * [https://mozilla.github.io/server-side-tls/ssl-config-generator/ Generate Mozilla Security Recommended Web Server Configuration Files] | ||
* [https://wiki.mozilla.org/Security/Server_Side_TLS Security/Server Side TLS - MozillaWiki] | * [https://wiki.mozilla.org/Security/Server_Side_TLS Security/Server Side TLS - MozillaWiki] |
2021年9月27日 (一) 23:36的版本
SSL(英语:Secure Sockets Layer),或TLS(英语:Transport Layer Security),是一个安全协定。
设定
目前的设定,只支援有FS(Forward secrecy)的协定(不断行):
CHACHA20+ECDHE:AESGCM+ECDHE:AES+ECDHE:CAMELLIA+ECDHE:!ADH:!AECDH:!DSS:!ECDSA:!MD5:!SHA1
如果要考虑到旧的浏览器,拿掉 SHA1 限制,并且指定(在配合nginx时使用):
CHACHA20+ECDHE:AESGCM+ECDHE:AES+ECDHE:CAMELLIA+ECDHE:!ADH:!AECDH:!DSS:!ECDSA:!MD5:@SECLEVEL=1