Server negotiated HTTP/2 with blacklisted suite

Follow

Comments

2 comments

  • Avatar
    Sergio Sanchez

    As the problem occurred multiple times in the past for me and some of my clients I assume that the issue is linked to some sort of system update (presumably nginx).

    Is there a way to detect the problem without using SSLLabs?
    I would like to react to some condition with a cronjob fixing the problem ad-hoc without my clients noticing.

    0
    Comment actions Permalink
  • Avatar
    Alisa Kasyanova

    @Sergio Sanchez
    Check the /etc/nginx/conf.d/ssl.conf file, it contains a list of nginx ciphers.
    I suppose it is possible to run some script to read through the file and to check the order of ciphers. In this case, any third-party checkers are not needed.

    0
    Comment actions Permalink

Please sign in to leave a comment.

Have more questions? Submit a request