haproxy ssl相关配置
2016-03-07 11:00
309 查看
ssl-default-bind-options [<option>]... This setting is only available when support for OpenSSL was built in. It sets default ssl-options to force on all "bind" lines. Please check the "bind" keyword to see available options. Example: global ssl-default-bind-options no-sslv3 no-tls-tickets ssl-default-bind-options 这个设置是只可用的当支持OpenSSL ,它设置 default ssl-options 为force 在所有的bind 项, 请检查 bind 关键字 来查看可用的选项: Example: global ssl-default-bind-options no-sslv3 no-tls-tickets force-sslv3 This option enforces use of SSLv3 only on SSL connections instantiated from this listener. SSLv3 is generally less expensive than the TLS counterparts for high connection rates. This option is also available on global statement "ssl-default-bind-options". See also "no-tlsv*" and "no-sslv3". force-tlsv10 This option enforces use of TLSv1.0 only on SSL connections instantiated from this listener. This option is also available on global statement "ssl-default-bind-options". See also "no-tlsv*" and "no-sslv3". force-tlsv11 This option enforces use of TLSv1.1 only on SSL connections instantiated from this listener. This option is also available on global statement "ssl-default-bind-options". See also "no-tlsv*", and "no-sslv3". force-tlsv12 This option enforces use of TLSv1.2 only on SSL connections instantiated from this listener. This option is also available on global statement "ssl-default-bind-options". See also "no-tlsv*", and "no-sslv3". no-sslv3 This option disables support for SSLv3 when SSL is used to communicate with the server. Note that SSLv2 is disabled in the code and cannot be enabled using any configuration option. See also "force-sslv3", "force-tlsv*". Supported in default-server: No no-sslv3 这个选项 关闭支持SSLV3 当SSL是用于和server通讯, 注意SSLv2 是在代码里关闭,不能使用任何配置选项来启用
相关文章推荐
- hiho 1269 优化延迟 二分 优先队列
- sql server 清除系统错误日志,消息队列产生大量日志
- 关于WeiPHP
- C语言指针学习(转载)
- haproxy ssl相关配置
- 注解开源库 butterknife的使用
- 文件的写入本地以及删除
- 23种设计模式
- U3D游戏开发—程序员转型篇(一)背景介绍
- java关键字
- git ubuntu系统下常用命令
- 用handler动态改变text文字,并循环显示
- Linux网络程序设计
- Linux学习之touch命令
- 用Chrome调试Android手机上的网页
- 【解决方法】【技术】22个iOS开发的小技巧
- C#多态的实现:虚方法、抽象类、接口
- 爬虫
- android日常开发总结的技术经验60条
- Linux用户管理、新建用户、用户分组,分配权限等