So I would ! for all TLS 1.2 strings ? Leaving only the TLS1.3 suites ?
Maybe a example config line would be good please. Sorry this is more
OpenSSL and off topic a bit.
On 2/19/2019 5:54 AM, Chris via Unbound-users wrote:
Hmm.. I am unclear..
Would I disallow all TLS1.2 to allow only TLS1.3 ?
On 2/19/2019 5:15 AM, A. Schulze via Unbound-users wrote:
John via Unbound-users:
tls-ciphers: <string with cipher list>
assumed unbound is compiled/linked with openssl, then it's the usual
openssl cipher selection 'language'
see "man ciphers" or
https://www.openssl.org/docs/manmaster/man1/ciphers.html
Andreas
-------- Forwarded Message --------
Subject: Unbound 1.9 tls-ciphers Settings
Date: Tue, 19 Feb 2019 06:37:41 +0100
From: John via Unbound-users <[email protected]>
Reply-To: John <[email protected]>
To: [email protected]
Hello Unbound List
Since this relaease 1.9. is it possible, to make settings for
tls-ciphers
tls-ciphersuites
tls-session-ticket-keys
Unfortunately nowhere is written which values can be used
In https://nlnetlabs.nl/documentation/unbound/unbound.conf/
is only written
tls-ciphers: <string with cipher list>
If I wants to set i.e. only TLS 1.3 how have I to write it
tls-ciphers: tls-1.3
or have I to use tls-ciphersuites?
Maybe someone can tell me about the values which I can use?
Regards
John
