Mercurial > hg > nginx-site

changeset 43:662995d3e647

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Update of SSL ciphers in latest nginx versions.
author Igor Sysoev <igor@sysoev.ru>
date Sun, 02 Oct 2011 11:04:53 +0000
parents 79e9dff80d25
children 0bf5b5e45501
files xml/en/docs/http/configuring_https_servers.xml
diffstat 1 files changed, 7 insertions(+), 2 deletions(-) [+]
line wrap: on
line diff
--- a/xml/en/docs/http/configuring_https_servers.xml	Sun Oct 02 11:00:45 2011 +0000
+++ b/xml/en/docs/http/configuring_https_servers.xml	Sun Oct 02 11:04:53 2011 +0000
@@ -46,8 +46,8 @@
 The directives <dirname>ssl_protocols</dirname> and
 <dirname>ssl_ciphers</dirname> may be used to limit connections
 to strong SSL protocol versions and ciphers.
-Since version 0.8.20, nginx uses <dirname>ssl_protocols SSLv3 TLSv1</dirname>
-and <dirname>ssl_ciphers HIGH:!ADH:!MD5</dirname> by default,
+Since version 1.0.5, nginx uses <dirname>ssl_protocols SSLv3 TLSv1</dirname>
+and <dirname>ssl_ciphers HIGH:!aNULL:!MD5</dirname> by default,
 so they should only be set for earlier nginx versions.
 </para>
 
@@ -450,6 +450,11 @@
 <list>
 
 <item>
+Version 1.0.5 and later: the default SSL ciphers are
+<dirname>HIGH:!aNULL:!MD5</dirname>.
+</item>
+
+<item>
 Version 0.7.65, 0.8.20 and later: the default SSL ciphers are
 <dirname>HIGH:!ADH:!MD5</dirname>.
 </item>