Add ECDSA ciphers for TLSv1.2

SteveLTN / https-portal

A fully automated HTTPS server powered by Nginx, Let's Encrypt and Docker.

MIT License

4.46k stars 295 forks source link

Add ECDSA ciphers for TLSv1.2 #328

Closed sarisia closed 1 year ago

sarisia commented 1 year ago

Current nginx template for ssl sites does not have ssl_ciphers for ECDSA server certs + TLSv1.2 so using ECDSA certs results in No common ciphers error in clients.

This PR fixes:

Add ECDSA ciphers for TLSv1.2
Drop ciphers for TLSv1.1 and SSLv3 since these protocols are already dropped in fs_overlay/var/lib/nginx-conf/nginx.conf.erb

Partially fixes #302

SteveLTN commented 1 year ago

Thanks! Crazy busy with my work, will check it later!

SteveLTN commented 1 year ago

1.23.0 is released and includes this PR. Thanks for the help!