Facebook Twitter Instagram
    TecAdmin
    • Home
    • Ubuntu 20.04
      • Upgrade Ubuntu
      • Install Java
      • Install Node.js
      • Install Docker
      • Install LAMP Stack
    • Tutorials
      • AWS
      • Shell Scripting
      • Docker
      • Git
      • MongoDB
    • FeedBack
    • Submit Article
    • About Us
    Facebook Twitter Instagram
    TecAdmin
    Home»Web Servers»Nginx»How To Enable TLS 1.2 Only In Nginx Web Server

    How To Enable TLS 1.2 Only In Nginx Web Server

    RahulBy RahulApril 29, 20181 Min Read

    SSL 2.0 and SSL 3.0 having lots of known vulnerabilities like POODLE (CVE-2014-3566), That’s why latest browsers have removed support for these vulnerable protocols. We also recommend moving your server to use TLS versions and specifically to TLS 1.2. This tutorial will help you to enable TLS 1.2 with Nginx web server.

    • Install and Use Let’s Encrypt SSL in Nginx

    Enable TLS 1.2 Only in Nginx

    Edit your Nginx server block section for your domain in configuration file on your server and add set the ssl_protocols as followings. This enables TLSv1.2 only protocol in your Nginx server block.

     ssl_protocols TLSv1.2;
    

    The simplest Nginx server block with SSL looks like below

    server {
        listen 443 ssl;
        server_name example.com;
    
        ssl_protocols TLSv1.2;
        ssl_certificate /etc/pki/tls/cert.pem;
        ssl_certificate_key /etc/pki/tls/private/privkey.pem;
    
    

    Enable TLS 1.1 and 1.2 Both

    As per article written here POODLE vulnerability expands beyond SSLv3 to TLS 1.0 and 1.1. So we don’t recommend to use this for production server but if you want to enable this for your development. You can do following configuration.

     ssl_protocols TLSv1.2 TLSv1.1;
    

    After making changes in your configuration file, restart Nginx service to apply new settings.

    nginx SSL TLS TLS 1.2
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email WhatsApp
    Previous ArticleHow To Install Nginx on Debian 8 (Jessie)
    Next Article How to Install and Use Cordova on Debian 11/10

    Related Posts

    How to Delete a Let’s Encrypt Certificate using Certbot

    Updated:June 3, 20222 Mins Read

    How To Install Linux, Nginx, MySQL, & PHP (LEMP Stack) on Ubuntu 22.04

    Updated:April 7, 20227 Mins Read

    How to Increase Request Timeout in NGINX

    Updated:January 13, 20222 Mins Read

    How to Install and Secure Apache on Debian11

    6 Mins Read

    How To Secure Tomcat with Let’s Encrypt SSL

    Updated:June 4, 20223 Mins Read

    Adding Let’s Entrypt SSL to Webmin Hostname

    2 Mins Read

    1 Comment

    1. Detea on April 30, 2018 11:44 pm

      Rahul K., thank you for your blog post.Really thank you! Awesome.

      Reply

    Leave A Reply Cancel Reply

    Recent Posts
    • How To Install Docker on Ubuntu 22.04
    • How to Install Bower on Ubuntu 22.04 & 20.04
    • How to run “npm start” through Docker
    • Filesystem Hierarchy Structure (FHS) in Linux
    • How to accept user input in Python
    Facebook Twitter Instagram Pinterest
    © 2022 Tecadmin.net. All Rights Reserved | Terms  | Privacy Policy

    Type above and press Enter to search. Press Esc to cancel.