Created
October 3, 2011 13:23
-
-
Save perusio/1259095 to your computer and use it in GitHub Desktop.
SSL configuration for fixing BEAST SSL vulnerability
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
## BEAST http://vnhacker.blogspot.com/2011/09/beast.html SSL vuln server side workaround. | |
## This will break IE6 and below SSL handling. Works in all other browsers. Grabbed from: | |
## http://mailman.nginx.org/pipermail/nginx-devel/2011-October/001311.html. | |
ssl_ciphers RC4:HIGH:!aNULL:!MD5; | |
ssl_prefer_server_ciphers on; |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment