LittleBizzy

Dominate technical SEO with a SlickStack cloud server for just $39/month!  Order Now

What are the types of TLS ciphers that you support?

ANSWER: We default completely to CloudFlare for our TLS ciphers by using the default OpenSSL configuration on Nginx and keeping that updated to Nginx “dev” release. That means the TLS ciphers are set by CloudFlare and their Comodo CA certificate and not by LittleBizzy.

While its possible to support older versions of TLS ciphers by ditching CloudFlare or manually adding “old” ciphers to Nginx server blocks, we don’t recommend or allow this. Using modern TLS ciphers is a good idea because it means the best in security for your visitors.

Look at all these “insecure” ciphers that the HTTP/2 projects warns about:

https://http2.github.io/http2-spec/#BadCipherSuites

In conclusion if any of your users are seeing SSL errors tell them to upgrade their browser to latest (or somewhat recent) version and it should be fixed.

About the Author

Jesse

Tags: