You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When using multiple ssl_ciphers (usually: RSA + ECDSA), it seems ot me that's impossible to know (and/or log) which was was used for a specific connection or, at least, I cannot find a variable reporting that value.
This is because it seems to me that nowadays most client just support ECC and having RSA+ECDSA dual certificates is overkill, but before dropping them altogether I'd prefer to keep as is for a few more months and log the data, to veryfy how often the RSA one is actually used.
The text was updated successfully, but these errors were encountered:
Indeed, modern ciphers use the certificate for authencity check only but not for keys exchange (so both types can be used).
I agree that introducing dedicated variable makes sense.
When using multiple
ssl_ciphers
(usually: RSA + ECDSA), it seems ot me that's impossible to know (and/or log) which was was used for a specific connection or, at least, I cannot find a variable reporting that value.This is because it seems to me that nowadays most client just support ECC and having RSA+ECDSA dual certificates is overkill, but before dropping them altogether I'd prefer to keep as is for a few more months and log the data, to veryfy how often the RSA one is actually used.
The text was updated successfully, but these errors were encountered: