search

arunoda / meteor-up-legacy

Production Quality Meteor Deployments
MIT License
2.26k stars 395 forks source link

Use better SSL by default #341

Open lorensr opened 9 years ago

lorensr commented 9 years ago

Chrome gives me this warning:

image

The non-https assets is my problem, but I'm guessing the outdated cryptography can be fixed with stud config? SHA1 is deprecated:

https://www.chromium.org/Home/chromium-security/education/tls#TOC-Deprecation-of-TLS-Features-Algorithms-in-Chrome

Here is recommended config:

https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility

arunoda commented 9 years ago

We are moving into a bud soon instead of stud. Give me couple of more days. On 2015 මාර්තු 28, සෙන at ප.ව. 2.35 Loren Sands-Ramshaw < notifications@github.com> wrote:

Chrome gives me this warning:

[image: image] https://cloud.githubusercontent.com/assets/251288/6880442/2db7b052-d4ee-11e4-8f1f-f9c536ed32ef.png

The non-https assets is my problem, but I'm guessing the outdated cryptography can be fixed with stud config? SHA1 is deprecated:

https://www.chromium.org/Home/chromium-security/education/tls#TOC-Deprecation-of-TLS-Features-Algorithms-in-Chrome

Here is recommended config:

https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility

— Reply to this email directly or view it on GitHub https://github.com/arunoda/meteor-up/issues/341.

lorensr commented 9 years ago

Great, thanks!

On Sat, Mar 28, 2015 at 2:53 AM, Arunoda Susiripala < notifications@github.com> wrote:

We are moving into a bud soon instead of stud. Give me couple of more days. On 2015 මාර්තු 28, සෙන at ප.ව. 2.35 Loren Sands-Ramshaw < notifications@github.com> wrote:

Chrome gives me this warning:

[image: image] < https://cloud.githubusercontent.com/assets/251288/6880442/2db7b052-d4ee-11e4-8f1f-f9c536ed32ef.png

The non-https assets is my problem, but I'm guessing the outdated cryptography can be fixed with stud config? SHA1 is deprecated:

https://www.chromium.org/Home/chromium-security/education/tls#TOC-Deprecation-of-TLS-Features-Algorithms-in-Chrome

Here is recommended config:

https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility

— Reply to this email directly or view it on GitHub https://github.com/arunoda/meteor-up/issues/341.

— Reply to this email directly or view it on GitHub https://github.com/arunoda/meteor-up/issues/341#issuecomment-87199104.

ghost commented 9 years ago

Please tell me how is progress going with bud. We definitely could use the correct tls 1.2 and no ssl3 configuration. We want to stick with mup so that we can migrate to cluster.

arunoda commented 9 years ago

We are using nginx in the mupx. Our next version of mup. See: https://github.com/arunoda/meteor-up/tree/mupx#

Check the migration guide as well: https://github.com/arunoda/meteor-up/tree/mupx#migrating-from-meteor-up-0x

LyuGGang commented 9 years ago

+1, Great!