ninja icon indicating copy to clipboard operation
ninja copied to clipboard
verified publisher icon ninjaframework

Way to exclude cipher suites using standalone server

Open jonathanpopp opened this issue 7 years ago • 1 comments

I need a way to Exclude Cipher Suites when using the ninja standalone server?

Particularly TLS1.0 which is considered obsolete and a few others.

jonathanpopp avatar Jun 19 '18 06:06 jonathanpopp

If you need fine grained control over TLS, you'll either need to submit PRs to add them to the project or use a reverse proxy in front of your app.

We use nginx in front of our Ninja apps for detailed control over TLS (ciphers, stapling, etc.).

-Joe

On Tue, Jun 19, 2018 at 2:03 AM, jonathanpopp [email protected] wrote:

I need a way to Exclude Cipher Suites when using the ninja standalone server?

Particularly TLS1.0 which is considered obsolete and a few others.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/ninjaframework/ninja/issues/620, or mute the thread https://github.com/notifications/unsubscribe-auth/AAjwArB1_YuagEMmqrq-kXBzDfe8C5Qkks5t-JROgaJpZM4Us5Hr .

jjlauer avatar Jun 19 '18 15:06 jjlauer