Oleg.R Oleg.R - 4 months ago 33
Node.js Question

Forcing TLS 1.1 or higher on node.js

I'm trying to create a server that would use TLS 1.1 or higher.

This is my current TLS configuration:

var options = {};
options.key = fs.readFileSync('privatekey.pem');
options.cert = fs.readFileSync('certificate.pem');
options.secureProtocol = 'TLSv1_server_method';
options.ciphers = "AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH";
options.honorCipherOrder = true;
httpServer = https.createServer(options, app);


Just as was suggested here

From reading Openssl's guide here I didn't find anything about TLS 1.1

Any suggestions?

Answer

This did the trick:

options.secureProtocol = 'SSLv23_server_method';
options.ciphers = "AES128-GCM-SHA256:HIGH:!MD5:!aNULL:!EDH";

The right place to look for it was here

Comments