SSLv3 broke again Vulnerability
SSLv3 Vulnerability broke again,Google's new draft TLS_FALLBACK_SCSV Under yet unclear circumstances,SSLv3 is currently disabled Does not consider IE6 The workaround。
1 2 3 4 5 | ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers ECDHE–RSA–AES256–SHA384:AES256–SHA256:RC4:HIGH:!MD5:!Anull:!eNULL:!NULL:!DH:!EDH:!AESGCM; ssl_prefer_server_ciphers on; ssl_session_cache shared:SSL:10m; ssl_session_timeout 10m; |
sslv3 testhttp://foundeo.com/products/iis-weak-ssl-ciphers/test.cfm