SUPPORTED CIPHERS / CIPHERSUITES

3 posts / 0 new
Topic locked
Last post
#1 Mon, 08/20/2018 - 09:42
jimdunn

SUPPORTED CIPHERS / CIPHERSUITES

Could someone direct me to the "official site" that lists the correct/current/safe CIPHERS / CIPHERSUITES et al that we should be using on our servers???

I found these:

  • https://cipherli.st/
  • https://statics.tls.security.mozilla.org/server-side-tls-conf-4.0.json

    • But I'm hoping there's a "standard" somewhere... anyone?

    Mon, 08/20/2018 - 13:10
    Jfro

    NO YES NO

    there is not a best standard.

    First you have to know and find out what your clients connecting to use, if using to old then you have to warn them or lock them out!

    First then you take a look for which "protocols" you set ciphers while different web and mail maybe

    You check them with for example ssllabs

    Fri, 08/24/2018 - 08:34
    scotwnw

    Good tests for ssl and info here

    https://www.ssllabs.com

    Topic locked