On ssllabs.com I am getting the following, even though I am using all the recommend settings.
http://i.imgur.com/TlsKMzP.png Here are my nginx settings: ssl_prefer_server_ciphers on; ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS"; ssl_dhparam /etc/nginx/ssl/dhparam_4096.pem; Any idea how I can get full forward secrecy enabled? Posted at Nginx Forum: http://forum.nginx.org/read.php?2,243341,243341#msg-243341 _______________________________________________ nginx mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx
