docs(https): Update HTTPS guide with TLS defaults#1285
Merged
josevalim merged 1 commit intoelixir-plug:mainfrom Sep 3, 2025
Merged
docs(https): Update HTTPS guide with TLS defaults#1285josevalim merged 1 commit intoelixir-plug:mainfrom
josevalim merged 1 commit intoelixir-plug:mainfrom
Conversation
Updates the HTTPS guide to align with modern TLS defaults and security best practices merged in PR#1283 Key changes include: - Describes the new :strong (TLS 1.3 only) and :compatible (TLS 1.3/1.2) profiles. - Removes references to insecure TLS 1.0 and 1.1 protocols. - Adds a new section explaining the security rationale for using modern AEAD ciphers over older CBC-mode ciphers. - Updates the OWASP link to the current Transport Layer Security Cheat Sheet. - Recommends using standardized Diffie-Hellman groups (RFC 7919) and provides the correct `openssl genpkey` command.
Member
|
💚 💙 💜 💛 ❤️ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Updates the HTTPS guide to align with modern TLS defaults and security best practices merged in PR#1283
Key changes include:
openssl genpkeycommand.