sftdyn icon indicating copy to clipboard operation
sftdyn copied to clipboard

Published 20 hours ago verified publisher icon SFTtech

TLS settings in config file

Open TheJJ opened this issue 5 years ago • 3 comments

One should be able to set TLS settings in the config, e.g. to disable some ciphers or TLS1.0 and 1.1.

TheJJ avatar Aug 30 '20 12:08 TheJJ

What about a simple argument --secureciphers or something similar that just disables all current weak ciphers? Maybe just make a note in the documentation about increased CPU usage if option is enabled.

bsu3338 avatar Feb 24 '21 15:02 bsu3338

It shouldn't matter if this is configured on the command line or config file. Changing the commandline involves editing the systemd unit, so it should be preferred to use the config file.

TheJJ avatar Mar 16 '21 19:03 TheJJ

What about just putting nginx or haproxy (locally) in front of it? Should be simple enough and doesn't require a config change.

DerDanilo avatar Mar 16 '22 13:03 DerDanilo