dreamax 7 Report post Posted November 11, 2016 Hi there, your are using an 4096bit RSA certificate, this fine, but you rely on 1024bit key length for diffie-hellmann key exchange only. That is far too little, you should use an much longer one. (eg. 4096bit): openssl dhparam -out /path/to/your/certificates/dhparams.pem 4096 and tell Nginx to use it ssl_dhparam /path/to/your/certificates/dhparams.pem; 1 Share this post Link to post Share on other sites
dreamax 7 Report post Posted November 15, 2016 This problem has been fixed. 1 Share this post Link to post Share on other sites
