Is there an original source linking Qualys report codes to codes in nginx configuration?

http://security.stackexchange.com/questions/128513/is-there-an-original-informaton-source-linking-output-of-qualys-ssl-report-to-se#

The online tool at Qualys for testing webserver SSL configurations,
https://www.ssllabs.com/ssltest/index.html, produces a list of codes
like
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
etc.

There are a lot of howtos on the net, but none of them show how to
relate
the actual string codes to those in the webservers. It is easy enough to
use them but there is no knowning how they arrive at those settings in
particular.

Is there some kind of table relating the Qualys codes with the actual
codes
used in nginx configurations?


Frank C.

=======================
http://devblog.brahmancreations.com

The codes used in the nginx configuration are from openssl. There is a
list
to convert the names in the manual available here:
https://www.openssl.org/docs/manmaster/apps/ciphers.html
Am 28.06.2016 05:22 schrieb “vfclists .” [email protected]:

nginx deals with an underlying library to manage TLS-ciphered content.
The
webserver merely sends configuration data to it on startup/reload and
uses
this library to do the actual (en/de)ciphering job.

The one officially supported is OpenSSL, for which cipher strings and
cipher suites are listed in its ‘ciphers’ module manual (man ciphers -
best


B. R.

There is a correspondence table on the Mozilla Server Side TLS wiki:

https://wiki.mozilla.org/Security/Server_Side_TLS#Cipher_names_correspondence_table

Regards,

On Tue, Jun 28, 2016 at 6:22 AM vfclists . [email protected] wrote:

use them but there is no knowning how they arrive at those settings in
http://devblog.brahmancreations.com


nginx mailing list
[email protected]
http://mailman.nginx.org/mailman/listinfo/nginx

Alan Orth
[email protected]
https://englishbulgaria.net
https://alaninkenya.org
https://mjanja.ch

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs