• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Question CentOS 7 and TLS1.3 with Let'sEncrypt. How is this possible ?

O

OverWolf

Regular Pleskian
Hi,

I'm on CentOS 7.9.2009 with openssl 1.0.2 and Plesk 18.0.39u1 with Let's Encrypt 2.13.7 and my websites have a connection encrypted with TLS 1.3. How is this is possible ? I know that I can setup and use TLS 1.3 with openssl 1.1.1k and more (for example with CentOs8).

Other question about chipers priority; I have seen that connection use for TLS 1.3 is TLS_AES_256 but I would like to change it with TLS_AES_128. How can I do it if I haven't configured any chipers for TLS 1.3 ?

Thank you in advance
 
TLSv1.3 for websites on CentOS 7 only works if you are using nginx for your websites. The nginx version that comes with Plesk is compiled against OpenSSL 1.1.1 and has TLSv1.3 support, while Apache httpd is provided by the OS vendor (Redhat/CentOS) and has no TLSv1.3 support.

Regarding ciphers: Have a look here:
support.plesk.com

How to enable/disable TLS protocol versions in Plesk for Linux

Applicable to: Plesk for Linux Question How to enable/disable TLS protocol versions in Plesk for Linux? Answer Connect to a Plesk server via SSH. Use the plesk bin server_pref utility to man...
support.plesk.com support.plesk.com
 
Hi Monty,

thank you very much for your support.
For ciphers, can I configure them only with plesk bin server_pref ? So is ssl.conf in /etc/nginx/conf.d/ useless ?
 
You must log in or register to reply here.

Similar threads

Polli
Issue Getting DANE working
2
Replies
33
Views
3K
Polli
Polli
Polli
Issue Mails only possible with a wildcard certificate
Replies
5
Views
537
Polli
Polli
C
Question How can I secure my Mail with Letsencrypt next to Cloudflares Origin Certificate in Plesk?
Replies
4
Views
1K
cpulove
C
J
Issue apache2 proxy target - wrong ip-address
Replies
5
Views
5K
cmaxwell
C
C
Issue Errors with Plesk scheduled backups
Replies
2
Views
1K
cmartinez127
C
Back
Top