[squid-users] choose TLS version

Amos Jeffries squid3 at treenet.co.nz
Fri Feb 3 04:29:55 UTC 2017

On 3/02/2017 10:19 a.m., Vieri wrote:
> Hi,
> Are the following two lines equivalent?
> https_port ... options=NO_SSLv3,NO_SSLv2,NO_TLSv1_1,NO_TLSv1
> https_port ... tls-min-version=1.2

Not quite. SSL is still handled specially by options=.

The top line is equivalent to:

  options=NO_SSLv3 tls-min-version=1.2

(no NO_SSLv2 because Squid-4 does not support SSLv2 things - including
config settings.)


More information about the squid-users mailing list