| ciphers (enum) | |
|---|---|
| Default: n/a | |
| Specifies the allowed ciphers. For details, see Table 5.29, Constants for cipher selection . |
| ciphers_tlsv1_3 (enum) | |
|---|---|
| Default: n/a | |
| Specifies the allowed ciphers for TLSv1.3 connections. For details, see Table 5.30, Constants for TLSv1.3 cipher selection . |
| dh_params (dhparams) | |
|---|---|
| Default: None | |
| The DH parameter used by ephemeral DH key generarion. Please be mind that this option is ignored in TLSv1.3 as it does not support custom DH parameters. |
| disable_compression (boolean) | |
|---|---|
| Default: TRUE | |
| Set this to FALSE to support TLS compression. Please be mind that this option is ignored in TLSv1.3 as it does not support compression. |
| disable_renegotiation (boolean) | |
|---|---|
| Default: TRUE | |
| Set this to TRUE to disable client initiated renegotiation. Please be mind that this option is ignored in TLSv1.3 as it does not support renegotiation. |
| disable_send_root_ca (boolean) | |
|---|---|
| Default: FALSE | |
| Inhibit sending Root CA to client, even if present in local certificate chain. |
| disable_ticket (boolean) | |
|---|---|
| Default: TRUE | |
| Session tickets are a method for TLS session reuse, described in RFC 5077. Set this option to FALSE to enable TLS session reuse using session tickets. |
| prioritize_chacha (boolean) | |
|---|---|
| Default: FALSE | |
| When cipher_server_preference is TRUE, reprioritize ChaCha20-Poly1305 cipher if it is at the top of the client cipher list. |
| shared_groups (enum) | |
|---|---|
| Default: n/a | |
| Specifies the allowed shared groups. For details, see Table 5.31, Constants for shared group selection . |
© 2021 BalaSys IT Security.
Send your comments to support@balasys.hu
