Modern TLS configuration: Let clients choose the cipher suite again.

Why? Because all modern cipher suites (which support AEAD and PFS) are considered "secure" at the moment. This means that their isn't a risk of downgrade attacks to insecure legacy cipher suites like before. Besides, clients without AES hardware acceleration can use smaller key sizes and/or EC-based cipher suites.

– Apache: SSLHonorCipherOrder off
– nginx: ssl_prefer_server_ciphers off;

Sign in to participate in the conversation

This instance was shut down on March 31st, 2020.