Custom error page on SSL negotiation failure

Hi,

I am trying to stop my customers that are trying to connect from an
insecure web browser (my goal is to use only TLS1.2). I have read the
documentation and I am able to set correct ssl ciphers and protocols on
the server side, but I am interested in serving custom page when they
are using different SSL protocol. I couldn’t find any solution on the
internet. Is there any way to do so with nginx?

Thank you,
Kiril

Hi,

I am trying to stop my customers that are trying to connect from an
insecure web browser (my goal is to use only TLS1.2). I have read
the documentation and I am able to set correct ssl ciphers and
protocols on the server side, but I am interested in serving custom
page when they are using different SSL protocol.

If you want to serve anything, including custom error pages, than
you need to allow all ssl ciphers and let your application return
that error, based on the SSL cipher used.

Checkout “Embedded Variables” in the SSL module [1].

Regards,

Lukas

[1] http://nginx.org/en/docs/http/ngx_http_ssl_module.html#variables


nginx mailing list
[email protected]
http://mailman.nginx.org/mailman/listinfo/nginx

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs