http://security.stackexchange.com/questions/128513/is-there-an-original-informaton-source-linking-output-of-qualys-ssl-report-to-se#
The online tool at Qualys for testing webserver SSL configurations,
SSL Server Test (Powered by Qualys SSL Labs), produces a list of codes
like
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
etc.
There are a lot of howtos on the net, but none of them show how to
relate
the actual string codes to those in the webservers. It is easy enough to
use them but there is no knowning how they arrive at those settings in
particular.
Is there some kind of table relating the Qualys codes with the actual
codes
used in nginx configurations?
–
Frank C.
=======================
http://devblog.brahmancreations.com
The codes used in the nginx configuration are from openssl. There is a
list
to convert the names in the manual available here:
https://www.openssl.org/docs/manmaster/apps/ciphers.html
Am 28.06.2016 05:22 schrieb “vfclists .” [email protected]:
nginx deals with an underlying library to manage TLS-ciphered content.
The
webserver merely sends configuration data to it on startup/reload and
uses
this library to do the actual (en/de)ciphering job.
The one officially supported is OpenSSL, for which cipher strings and
cipher suites are listed in its ‘ciphers’ module manual (man ciphers -
best
B. R.
There is a correspondence table on the Mozilla Server Side TLS wiki:
https://wiki.mozilla.org/Security/Server_Side_TLS#Cipher_names_correspondence_table
Regards,
On Tue, Jun 28, 2016 at 6:22 AM vfclists . [email protected] wrote:
use them but there is no knowning how they arrive at those settings in
http://devblog.brahmancreations.com
nginx mailing list
[email protected]
nginx Info Page
–
Alan Orth
[email protected]