https://wiki.fiveyellowmice.com/index.php?action=history&feed=atom&title=Nginx_SSL_%E9%85%8D%E7%BD%AE
Nginx SSL 配置 - 版本历史
2026-05-30T21:59:00Z
本wiki的该页面的版本历史
MediaWiki 1.34.1
https://wiki.fiveyellowmice.com/index.php?title=Nginx_SSL_%E9%85%8D%E7%BD%AE&diff=110&oldid=prev
FiveYellowMice:更新 cipher 。
2017-07-13T13:01:52Z
<p>更新 cipher 。</p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="zh-Hans">
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">←上一版本</td>
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">2017年7月13日 (四) 13:01的版本</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l1" >第1行:</td>
<td colspan="2" class="diff-lineno">第1行:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div><code>/etc/nginx/conf.d/ssl_security.conf</code><syntaxhighlight lang="nginx"></div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div><code>/etc/nginx/conf.d/ssl_security.conf</code><syntaxhighlight lang="nginx"></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_protocols TLSv1 TLSv1.1 TLSv1.2;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_protocols TLSv1 TLSv1.1 TLSv1.2;</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>ssl_ciphers <del class="diffchange diffchange-inline">ECDH+AESGCM</del>:<del class="diffchange diffchange-inline">ECDH+</del>AES256:<del class="diffchange diffchange-inline">ECDH+</del>AES128:RSA<del class="diffchange diffchange-inline">+AESGCM</del>:RSA<del class="diffchange diffchange-inline">+AES</del>:<del class="diffchange diffchange-inline">!RC4</del>:<del class="diffchange diffchange-inline">!aNULL</del>:<del class="diffchange diffchange-inline">!eNULL</del>:<del class="diffchange diffchange-inline">!LOW</del>:<del class="diffchange diffchange-inline">!3DES</del>:<del class="diffchange diffchange-inline">!MD5</del>:<del class="diffchange diffchange-inline">!EXP</del>:<del class="diffchange diffchange-inline">!PSK</del>:<del class="diffchange diffchange-inline">!SRP</del>:<del class="diffchange diffchange-inline">!DSS</del>:<del class="diffchange diffchange-inline">!ADH</del>:!<del class="diffchange diffchange-inline">AECDH</del>;</div></td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>ssl_ciphers <ins class="diffchange diffchange-inline">ECDHE-ECDSA-CHACHA20-POLY1305</ins>:<ins class="diffchange diffchange-inline">ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-</ins>AES256<ins class="diffchange diffchange-inline">-SHA</ins>:<ins class="diffchange diffchange-inline">DHE-RSA-</ins>AES128<ins class="diffchange diffchange-inline">-SHA256</ins>:<ins class="diffchange diffchange-inline">DHE-</ins>RSA<ins class="diffchange diffchange-inline">-AES128-SHA</ins>:<ins class="diffchange diffchange-inline">DHE-</ins>RSA<ins class="diffchange diffchange-inline">-AES256-SHA256</ins>:<ins class="diffchange diffchange-inline">DHE-RSA-AES256-SHA</ins>:<ins class="diffchange diffchange-inline">ECDHE-ECDSA-DES-CBC3-SHA</ins>:<ins class="diffchange diffchange-inline">ECDHE-RSA-DES-CBC3-SHA</ins>:<ins class="diffchange diffchange-inline">EDH-RSA-DES-CBC3-SHA</ins>:<ins class="diffchange diffchange-inline">AES128-GCM-SHA256</ins>:<ins class="diffchange diffchange-inline">AES256-GCM-SHA384</ins>:<ins class="diffchange diffchange-inline">AES128-SHA256</ins>:<ins class="diffchange diffchange-inline">AES256-SHA256</ins>:<ins class="diffchange diffchange-inline">AES128-SHA</ins>:<ins class="diffchange diffchange-inline">AES256-SHA</ins>:<ins class="diffchange diffchange-inline">DES-CBC3-SHA</ins>:!<ins class="diffchange diffchange-inline">DSS</ins>;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_dhparam /etc/nginx/ssl/dhparams.pem; # Run `openssl dhparam -out /etc/nginx/ssl/dhparams.pem 2048` beforehead</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_dhparam /etc/nginx/ssl/dhparams.pem; # Run `openssl dhparam -out /etc/nginx/ssl/dhparams.pem 2048` beforehead</div></td></tr>
</table>
FiveYellowMice
https://wiki.fiveyellowmice.com/index.php?title=Nginx_SSL_%E9%85%8D%E7%BD%AE&diff=100&oldid=prev
FiveYellowMice:Change 'first' to 'beforehead'
2017-04-21T13:51:00Z
<p>Change 'first' to 'beforehead'</p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="zh-Hans">
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">←上一版本</td>
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">2017年4月21日 (五) 13:51的版本</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l3" >第3行:</td>
<td colspan="2" class="diff-lineno">第3行:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:RSA+AESGCM:RSA+AES:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!ADH:!AECDH;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:RSA+AESGCM:RSA+AES:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!ADH:!AECDH;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>ssl_dhparam /etc/nginx/ssl/dhparams.pem; # Run `openssl dhparam -out /etc/nginx/ssl/dhparams.pem 2048` <del class="diffchange diffchange-inline">first</del></div></td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>ssl_dhparam /etc/nginx/ssl/dhparams.pem; # Run `openssl dhparam -out /etc/nginx/ssl/dhparams.pem 2048` <ins class="diffchange diffchange-inline">beforehead</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_session_cache shared:SSL:10m;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_session_cache shared:SSL:10m;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td></tr>
</table>
FiveYellowMice
https://wiki.fiveyellowmice.com/index.php?title=Nginx_SSL_%E9%85%8D%E7%BD%AE&diff=75&oldid=prev
FiveYellowMice:添加对 ssl_dhparam 的解释
2016-06-07T10:12:49Z
<p>添加对 ssl_dhparam 的解释</p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="zh-Hans">
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">←上一版本</td>
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">2016年6月7日 (二) 10:12的版本</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l3" >第3行:</td>
<td colspan="2" class="diff-lineno">第3行:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:RSA+AESGCM:RSA+AES:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!ADH:!AECDH;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:RSA+AESGCM:RSA+AES:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!ADH:!AECDH;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>ssl_dhparam /etc/nginx/ssl/dhparams.pem;</div></td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>ssl_dhparam /etc/nginx/ssl/dhparams.pem; <ins class="diffchange diffchange-inline"># Run `openssl dhparam -out /etc/nginx/ssl/dhparams.pem 2048` first</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_session_cache shared:SSL:10m;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_session_cache shared:SSL:10m;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td></tr>
</table>
FiveYellowMice
https://wiki.fiveyellowmice.com/index.php?title=Nginx_SSL_%E9%85%8D%E7%BD%AE&diff=74&oldid=prev
2016年6月7日 (二) 09:52 FiveYellowMice
2016-06-07T09:52:14Z
<p></p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="zh-Hans">
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">←上一版本</td>
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">2016年6月7日 (二) 09:52的版本</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l1" >第1行:</td>
<td colspan="2" class="diff-lineno">第1行:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div><code>/etc/nginx/conf.d/ssl_security.conf</code><syntaxhighlight lang="nginx"></div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div><code>/etc/nginx/conf.d/ssl_security.conf</code><syntaxhighlight lang="nginx"></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_protocols TLSv1 TLSv1.1 TLSv1.2;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_protocols TLSv1 TLSv1.1 TLSv1.2;</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:RSA+AESGCM:RSA+AES:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!ADH:!AECDH;</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><del class="diffchange diffchange-inline">ssl_ciphers GCM:HIGH:!DH:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS</del>;</div></td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">ssl_dhparam /etc/nginx/ssl/dhparams.pem</ins>;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_session_cache shared:SSL:10m;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_session_cache shared:SSL:10m;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td></tr>
</table>
FiveYellowMice
https://wiki.fiveyellowmice.com/index.php?title=Nginx_SSL_%E9%85%8D%E7%BD%AE&diff=73&oldid=prev
2016年6月4日 (六) 13:59 FiveYellowMice
2016-06-04T13:59:10Z
<p></p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="zh-Hans">
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">←上一版本</td>
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">2016年6月4日 (六) 13:59的版本</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l1" >第1行:</td>
<td colspan="2" class="diff-lineno">第1行:</td></tr>
<tr><td class='diff-marker'>−</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><syntaxhighlight lang="nginx"></div></td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"><code>/etc/nginx/conf.d/ssl_security.conf</code></ins><syntaxhighlight lang="nginx"></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_protocols TLSv1 TLSv1.1 TLSv1.2;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_protocols TLSv1 TLSv1.1 TLSv1.2;</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>ssl_prefer_server_ciphers on;</div></td></tr>
</table>
FiveYellowMice
https://wiki.fiveyellowmice.com/index.php?title=Nginx_SSL_%E9%85%8D%E7%BD%AE&diff=72&oldid=prev
FiveYellowMice:创建页面,内容为“<syntaxhighlight lang="nginx"> ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers GCM:HIGH:!DH:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!P...”
2016-06-04T12:28:53Z
<p>创建页面,内容为“<syntaxhighlight lang="nginx"> ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers GCM:HIGH:!DH:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!P...”</p>
<p><b>新页面</b></p><div><syntaxhighlight lang="nginx"><br />
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;<br />
ssl_prefer_server_ciphers on;<br />
ssl_ciphers GCM:HIGH:!DH:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS;<br />
ssl_session_cache shared:SSL:10m;<br />
<br />
ssl_stapling on;<br />
ssl_stapling_verify on;<br />
resolver 8.8.8.8 8.8.4.4 valid=300s;<br />
resolver_timeout 5s;<br />
</syntaxhighlight></div>
FiveYellowMice