cyberb
commented
4 years ago Have modifications made it worse? Or it was never working?
Closed DarkCoocky closed 4 years ago
cyberb
commented
4 years ago Have modifications made it worse? Or it was never working?
cyberb
commented
4 years ago I think we need OpenSSL v1.1.1 or greater for that, but we have 1.0.2g https://github.com/syncloud/3rdparty/blob/master/nginx/build.sh#L17
DarkCoocky
commented
4 years ago That never worked.
You sure? When I looked on my server it was the version 1.1.1 d And even in the file you mentioned its 1.1.1 ^^
cyberb
commented
4 years ago Just pushed an upgrade to nginx
DarkCoocky
commented
4 years ago I'll test your modifications soon. But as I turned off again my server by mistake (clicked shutdown instead of log out 😂) it won't be before Friday :)
cyberb
commented
4 years ago Fix is released, update system from updates, should be at least 200723422. Firefox and ssl labs (A+) show TLS 1.3
With the last modifications, I noticed while testing my server with SSL Labs that TLS 1.3 is not working.
I'm thinking about the certificate that, according to Google should be renewed manually to make TLS 1.3 working. But I didn't find the command to force the certificate renewal with certbot. (source : https://libre-software.net/tls-nginx/#tls)