HTTPS authorization using obsolete RSA

On various Hardware and OS systems: pi / windows / routers / nas, etc
Post Reply
jaras
Posts: 2
Joined: Tuesday 29 August 2017 16:51
Target OS: Linux
Domoticz version:
Contact:

HTTPS authorization using obsolete RSA

Post by jaras » Saturday 11 November 2017 19:31

I got a site using letsencrypt and when checking my certificate I get a warning from Chrome saying the authentication is using an obsolete key. According to this discussion it should be a configuration of the webserver. So where can I find it? I use the built in domoticz webserver on linux ubuntu.

The connection to this site uses TLS 1.2 (a strong protocol), RSA (an obsolete key exchange), and AES_128_GCM (a strong cipher).

What I found so far, "this is about authentication, not about encryption" or most likely the key exchange part and "Preferably RSA should only be used for authentication and the key exchange should be performed using DHE or ECDHE."

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest