Skip to content

Add TLSv1.3 to nginx default configuration #470

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 15, 2021
Merged

Add TLSv1.3 to nginx default configuration #470

merged 1 commit into from
Nov 15, 2021

Conversation

ksaadDE
Copy link
Contributor

@ksaadDE ksaadDE commented Jul 29, 2021

TLSv1.3 should be supported (+security) and soon as possible should be TLSv1.2 EOL.

@rndmh3ro
Copy link
Member

Sorry for missing this PR, @ksaadDE!

The PR itself looks good. However the tests fail because we do not have TLSv1.3 in our baseline tests included. I opened a PR for this here: dev-sec/nginx-baseline#51

If this PR is merged, than we can hopefully merge this PR!

@rndmh3ro
Copy link
Member

Hey @ksaadDE,

can you please rebase your PR onto master? Then we can merge it.

@schurzi schurzi changed the title Update main.yml Add TLSv1.3 to nginx default configuration Oct 25, 2021
@ksaadDE
Copy link
Contributor Author

ksaadDE commented Nov 12, 2021
edited
Loading

Is it rebased now? It's in branch dev-sec:master

/E: The dh_params should be updated to 4096. When the merge is done, I can add a PR for it. Just let me know, when done. Ty

@ksaadDE @schurzi
Update main.yml
96d6b47 
TLSv1.3 should be supported (+security) and soon as possible should be TLSv1.2 EOL.
@schurzi schurzi merged commit b0393a1 into dev-sec:master Nov 15, 2021
@schurzi
Copy link
Contributor

schurzi commented Nov 15, 2021

thank you for this contribution :)

divialth pushed a commit to divialth/ansible-collection-hardening that referenced this pull request Aug 3, 2022
@schurzi
Merge pull request dev-sec#470 from ksaadDE/patch-2
9ced0ef 
Add TLSv1.3 to nginx default configuration
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

enhancement minor nginx_hardening

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ksaadDE @rndmh3ro @schurzi