Closed DarkCoocky closed 4 years ago
Have modifications made it worse? Or it was never working?
I think we need OpenSSL v1.1.1 or greater for that, but we have 1.0.2g https://github.com/syncloud/3rdparty/blob/master/nginx/build.sh#L17
That never worked.
You sure? When I looked on my server it was the version 1.1.1 d And even in the file you mentioned its 1.1.1 ^^
Just pushed an upgrade to nginx
I'll test your modifications soon. But as I turned off again my server by mistake (clicked shutdown instead of log out 😂) it won't be before Friday :)
Fix is released, update system from updates, should be at least 200723422. Firefox and ssl labs (A+) show TLS 1.3
With the last modifications, I noticed while testing my server with SSL Labs that TLS 1.3 is not working.
I'm thinking about the certificate that, according to Google should be renewed manually to make TLS 1.3 working. But I didn't find the command to force the certificate renewal with certbot. (source : https://libre-software.net/tls-nginx/#tls)