| Syntax: | ssl_ciphers ciphers |
| Default: | HIGH:!aNULL:!MD5 |
| Context: | http server |
| Reference: | ssl_ciphers |
This directive describes the list of cipher suites the server supports for establishing a secure connection. Cipher suites are specified in the OpenSSL cipherlist format, for example:
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
Since nginx version 1.0.5, the default ciphers are:
ssl_ciphers HIGH:!aNULL:!MD5;
The complete cipherlist supported by the currently installed version of OpenSSL in your platform can be obtained by issuing the command:
openssl ciphers
syntax: ssl_ciphers file ciphers
default: ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
context: mail, server
Directive describes the permitted ciphers. Ciphers are assigned in the formats supported by OpenSSL.