Re: [openssl-users] Re-enable 3DES on NGINX + OpenSSL 1.1.1

3DES is considered to only be 112 bits in strength. The default security level is 1 (which allows most things), perhaps nginx resets the security level to 3 or greater (which means a minimum of 128-bit ciphers). -- -Todd Short // tsh...@akamai.com // "One if by land,

Re: [openssl-users] Re-enable 3DES on NGINX + OpenSSL 1.1.1

Thanks very much Matt. I have indeed built with NGINX configure opt --with-openssl-opt=enable-weak-ssl-cipher and whilst I don¹t see an error when running NGINX with a/some 3DES cipher(s) in the ciphers list, I don¹t see any 3DES ciphers in the output of e.g. Testssl and I can¹t make a connection

Re: [openssl-users] Re-enable 3DES on NGINX + OpenSSL 1.1.1

On 17/09/18 16:29, Neil Craig wrote: > Hi all > > I'm trying to re-add 3DES support (a temporary move, due to business > requirements) to an NGINX (1.15.3) + OpenSSL (1.1.1) build via the NGINX > build flag --with-openssl-opt=enable-weak-ssl-ciphers which i learnt > from

[openssl-users] Re-enable 3DES on NGINX + OpenSSL 1.1.1

Hi all I'm trying to re-add 3DES support (a temporary move, due to business requirements) to an NGINX (1.15.3) + OpenSSL (1.1.1) build via the NGINX build flag --with-openssl-opt=enable-weak-ssl-ciphers which i learnt from https://www.openssl.org/blog/blog/2016/08/24/sweet32/. Whilst I do see