Changes between Version 1 and Version 2 of Ticket #676, comment 8
- Timestamp:
- 07/26/22 00:48:54 (2 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #676, comment 8
v1 v2 19 19 Therefore, this config may not pass SSL Labs more modern test checks because of preferring server ciphers and allowing TLSv1.2. 20 20 21 Again, I'll reiterate that if you toremove TLSv1.2 from the above in the default server, then TLSv1.2 will be disabled across all endpoints. Even if a specific server other than the default one has TLSv1.2 listed in the ssl_protocols it will not accept TLSv1.2.21 Again, I'll reiterate that if you remove TLSv1.2 from the above in the default server, then TLSv1.2 will be disabled across all endpoints. Even if a specific server other than the default one has TLSv1.2 listed in the ssl_protocols it will not accept TLSv1.2. 22 22 23 23 You must handle SSL termination elsewhere outside of your nginx instance or have more than one instance configured, in order to have different ssl_protocols configurations for the different endpoints.
