• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:

    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Question TLS 1.2 ok only if NGINX running

Pascal_Netenvie

Regular Pleskian
Hello,
I actually test https on website on a server with Plesk 12.5 and Debian 8.

If Nginx run i get this :
Secure Connection
The connection to this site is encrypted and authenticated using a strong protocol (TLS 1.2), a strong key exchange (ECDHE_RSA with P-256), and a strong cipher (AES_128_GCM).

But if it don't run (Apache only) i get this :
Obsolete Connection Settings
The connection to this site uses an obsolete protocol (TLS 1.0), a strong key exchange (ECDHE_RSA with P-256), and an obsolete cipher (AES_256_CBC with HMAC-SHA1).

How to solve that and get TLS1.2 even without NGINX ?

Regards.
 
As far as I remember in order to use TLSv1.2 for SSLProtocol, you need at least Apache version 2.2.23 (in addition to OpenSSL 1.0.1 or higher).
If it is ok, define

SSLProtocol TLSv1.2

in Apache ssl.conf.
 
Hi,
To answer everyone :

First this server run Apache 2.2.22 so it can't run ok for TLS 1.2 ...
And conf is in /etc/apache2/mods-enabled/ssl.conf

Thx for help guys.
Cheers.
 
Back
Top