On 2014-10-22 at 12:41:00, Michael Lustfield wrote: > I would consider an addition to nginx-docs that would explain ciphers > and provide a list of ssl_ciphers that could be used that would also > explain what they provide. However, I don't see any current need to > change the default and see reason (above) to not change it.
Instead of providing a list of ciphers, I would suggest linking to the Mozilla recommendations. That list needs to be updated periodically (thanks to the ever changing TLS security landscape) and it's better to point to the latest version than to have a copy of an potentially old one. Francois -- Francois Marier identi.ca/fmarier http://fmarier.org twitter.com/fmarier -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]

