Skip to content

Instantly share code, notes, and snippets.

@perusio

perusio/gist:1259095

Created October 3, 2011 13:23
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save perusio/1259095 to your computer and use it in GitHub Desktop.
Save perusio/1259095 to your computer and use it in GitHub Desktop.
Download ZIP
SSL configuration for fixing BEAST SSL vulnerability
Raw
gistfile1.txt
## BEAST http://vnhacker.blogspot.com/2011/09/beast.html SSL vuln server side workaround.
## This will break IE6 and below SSL handling. Works in all other browsers. Grabbed from:
## http://mailman.nginx.org/pipermail/nginx-devel/2011-October/001311.html.
ssl_ciphers RC4:HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment