Join the community today
Become a Member

OpenSSL OpenSSL 1.1.1 and Chrome 70 with TLS 1.3 RFC support

Discussion in 'CentOS, Redhat & Oracle Linux News' started by bassie, Oct 16, 2018.

  1. rdan

    rdan Premium Member Premium Member

    4,420
    1,059
    113
    May 25, 2014
    Ratings:
    +1,543
    Local Time:
    6:32 AM
    Mainline
    10.2
    @Sunka
    Did you include this in your vhost config?
     
    • Like Like x 1
  2. eva2000

    eva2000 Administrator Staff Member

    37,260
    8,140
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,532
    Local Time:
    8:32 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    your /usr/local/nginx/conf/conf.d/phpmyadmin_ssl.conf ssl_ciphers need updating too but also check chrome://flags for TLS 1.3 to see if final needs to be set like on @rdan's virtualbox
     
    • Winner Winner x 1
  3. Sunka

    Sunka Well-Known Member

    1,045
    286
    83
    Oct 31, 2015
    Rijeka, Croatia
    Ratings:
    +464
    Local Time:
    11:32 PM
    Nginx 1.15.0
    MariaDB 10.2.15
    Nop


    Changed chipers for phpmyadmin and also change chrome flag to On

    Working (in firefox still shows tlsv1.2)


    SSL.png
     
    • Like Like x 1
  4. rdan

    rdan Premium Member Premium Member

    4,420
    1,059
    113
    May 25, 2014
    Ratings:
    +1,543
    Local Time:
    6:32 AM
    Mainline
    10.2
    That's why :D.
     
  5. rdan

    rdan Premium Member Premium Member

    4,420
    1,059
    113
    May 25, 2014
    Ratings:
    +1,543
    Local Time:
    6:32 AM
    Mainline
    10.2
    I can see your site is fine now.
    Protocol
    TLS 1.3
    Key exchange group
    X25519
    Cipher
    AES_256_GCM
     
    • Like Like x 2
  6. bassie

    bassie Well-Known Member

    1,025
    246
    63
    Apr 29, 2016
    Ratings:
    +726
    Local Time:
    11:32 PM
  7. rdan

    rdan Premium Member Premium Member

    4,420
    1,059
    113
    May 25, 2014
    Ratings:
    +1,543
    Local Time:
    6:32 AM
    Mainline
    10.2
    Works fine
    upload_2018-10-24_0-51-28.png
     
    • Like Like x 1
  8. bassie

    bassie Well-Known Member

    1,025
    246
    63
    Apr 29, 2016
    Ratings:
    +726
    Local Time:
    11:32 PM
  9. eva2000

    eva2000 Administrator Staff Member

    37,260
    8,140
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,532
    Local Time:
    8:32 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    My Samsung S7 finally updated Chrome to 70 as well :D

    andorid8-chrome70-01-tn.jpg andorid8-chrome70-02-tn.jpg
     
  10. Meirami

    Meirami Member

    120
    13
    18
    Dec 21, 2017
    Ratings:
    +37
    Local Time:
    12:32 AM
    How can I see detailed connection and certificate information with Android Firefox 63? By touching the lock, I see if connection is secure or not and whose certificate is in use. Nothing more.
    With Crome I can see detailed information.
     
  11. bassie

    bassie Well-Known Member

    1,025
    246
    63
    Apr 29, 2016
    Ratings:
    +726
    Local Time:
    11:32 PM
    Chrome 71 stable released.
    Regarding to TLS 1.3; Draft 28 is gone.
    Only Draft 23 and the final spec. are present.
     
    • Like Like x 1
  12. eva2000

    eva2000 Administrator Staff Member

    37,260
    8,140
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,532
    Local Time:
    8:32 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    don't think you can

    Thanks for heads up :)
     
..