Want to subscribe to topics you're interested in?
Become a Member

OpenSSL OpenSSL 1.1.1 and Chrome 70 with TLS 1.3 RFC support

Discussion in 'CentOS, Redhat & Oracle Linux News' started by bassie, Oct 16, 2018.

  1. rdan

    rdan Well-Known Member

    4,523
    1,084
    113
    May 25, 2014
    Ratings:
    +1,582
    Local Time:
    8:41 AM
    Mainline
    10.2
    @Sunka
    Did you include this in your vhost config?
     
    • Like Like x 1
  2. eva2000

    eva2000 Administrator Staff Member

    39,747
    8,767
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +13,489
    Local Time:
    10:41 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    your /usr/local/nginx/conf/conf.d/phpmyadmin_ssl.conf ssl_ciphers need updating too but also check chrome://flags for TLS 1.3 to see if final needs to be set like on @rdan's virtualbox
     
    • Winner Winner x 1
  3. Sunka

    Sunka Well-Known Member

    1,098
    298
    83
    Oct 31, 2015
    Rijeka, Croatia
    Ratings:
    +479
    Local Time:
    2:41 AM
    Nginx 1.15.8
    MariaDB 10.3.12
    Nop


    Changed chipers for phpmyadmin and also change chrome flag to On

    Working (in firefox still shows tlsv1.2)


    SSL.png
     
    • Like Like x 1
  4. rdan

    rdan Well-Known Member

    4,523
    1,084
    113
    May 25, 2014
    Ratings:
    +1,582
    Local Time:
    8:41 AM
    Mainline
    10.2
    That's why :D.
     
  5. rdan

    rdan Well-Known Member

    4,523
    1,084
    113
    May 25, 2014
    Ratings:
    +1,582
    Local Time:
    8:41 AM
    Mainline
    10.2
    I can see your site is fine now.
    Protocol
    TLS 1.3
    Key exchange group
    X25519
    Cipher
    AES_256_GCM
     
    • Like Like x 2
  6. bassie

    bassie Well-Known Member

    1,082
    269
    83
    Apr 29, 2016
    Ratings:
    +792
    Local Time:
    2:41 AM
  7. rdan

    rdan Well-Known Member

    4,523
    1,084
    113
    May 25, 2014
    Ratings:
    +1,582
    Local Time:
    8:41 AM
    Mainline
    10.2
    Works fine
    upload_2018-10-24_0-51-28.png
     
    • Like Like x 1
  8. bassie

    bassie Well-Known Member

    1,082
    269
    83
    Apr 29, 2016
    Ratings:
    +792
    Local Time:
    2:41 AM
  9. eva2000

    eva2000 Administrator Staff Member

    39,747
    8,767
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +13,489
    Local Time:
    10:41 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    My Samsung S7 finally updated Chrome to 70 as well :D

    andorid8-chrome70-01-tn.jpg andorid8-chrome70-02-tn.jpg
     
  10. Meirami

    Meirami Member

    128
    15
    18
    Dec 21, 2017
    Ratings:
    +41
    Local Time:
    3:41 AM
    How can I see detailed connection and certificate information with Android Firefox 63? By touching the lock, I see if connection is secure or not and whose certificate is in use. Nothing more.
    With Crome I can see detailed information.
     
  11. bassie

    bassie Well-Known Member

    1,082
    269
    83
    Apr 29, 2016
    Ratings:
    +792
    Local Time:
    2:41 AM
    Chrome 71 stable released.
    Regarding to TLS 1.3; Draft 28 is gone.
    Only Draft 23 and the final spec. are present.
     
    • Like Like x 1
  12. eva2000

    eva2000 Administrator Staff Member

    39,747
    8,767
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +13,489
    Local Time:
    10:41 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    don't think you can

    Thanks for heads up :)
     
..