Weak SSL Cipher Issue: Still Getting B Grade on SSL Labs After Updating nginx.conf and Upgrading nginx
During a VAPT (Vulnerability Assessment and Penetration Testing) of my application, I encountered a weak SSL cipher issue, resulting in a B grade on SSL Labs. Following various recommendations from online resources, I updated my nginx.conf with the following settings:
With nginx 1.18.0, duplicate intermediate certificate gets added in chain
I am having nginx 1.18.0 server running as proxy. I have configured TLS protocol with following configuration.