https://pkg.go.dev/crypto/tls#Config
// CipherSuites is a list of enabled TLS 1.0–1.2 cipher suites. The order of //
the list is ignored. Note that TLS 1.3 ciphersuites are not configurable. // //
*If CipherSuites is nil, a safe default list is used.* The default cipher //
suites might change
Hello Brian,
thank you for investigation.
I tried several ciphers some days ago. Every time I cut more and more
ciphers from the cnfiguration but it did not work - probably because it
were ciphers which are insecure. However for the first tyr I wanted to
allow all and check if all exporters
Only the first cipher you listed is rejected.
The code in exporter_toolkit just iterates over tls.CipherSuites():
https://github.com/prometheus/exporter-toolkit/blob/v0.11.0/web/tls_config.go#L401-L407
which you can replicate like this:
https://go.dev/play/p/yFl-V5MrGHh
It turns out that
3 matches
Mail list logo