Hacker News new | past | comments | ask | show | jobs | submit login

Why doesn't nginx default to using TLS v1.2 yet? It came out over a decade ago!



It does. https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_...

  Default: ssl_protocols TLSv1 TLSv1.1 TLSv1.2;


So then I don't understand the parent comment. It sounds like if you want TLS v1.2 support, you don't have to do anything special in configuring nginx.


Current defaults are `TLSv1 TLSv1.1 TLSv1.2`. The logic in stating `TLSv1.2` or `TLSv1.3 TLSv1.2` is that you're excluding TLSv1 or TLSv1.1 rather than explicitly including TLSv1.2.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: