On 2014-10-22 at 12:41:00, Michael Lustfield wrote:
> I would consider an addition to nginx-docs that would explain ciphers
> and provide a list of ssl_ciphers that could be used that would also
> explain what they provide. However, I don't see any current need to
> change the default and see reason (above) to not change it.

Instead of providing a list of ciphers, I would suggest linking to the
Mozilla recommendations. That list needs to be updated periodically (thanks
to the ever changing TLS security landscape) and it's better to point to the
latest version than to have a copy of an potentially old one.

Francois

-- 
Francois Marier           identi.ca/fmarier
http://fmarier.org      twitter.com/fmarier


-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to