You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I needed to add ssl-options(no-sslv2, no-sslv3, no-tlsv1, no-tlsv11, no-tlsv13) to the TLS options. Is this expected?
Because in the documentation is says that:
That way, the cipher-suite() also determines the encryption protocol used in the connection: to disable SSLv3, use an algorithm that is available only in TLSv1.2, and that both the client and the server supports.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
I tried to restrict the ciphers offered by syslog-ng client in a TLS connection:
But in the tcpdump I see that the Hello packet offers:
I needed to add
ssl-options(no-sslv2, no-sslv3, no-tlsv1, no-tlsv11, no-tlsv13)
to the TLS options.Is this expected?
Because in the documentation is says that:
TLS Options
Beta Was this translation helpful? Give feedback.
All reactions