Symptoms Unable to open https link in a browser. The web page does not open with the following error: ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY Cause Bug with ID #PPPM-5705. Will be fixed in future releases. Resolution As a workaround update nginx configuration by running the following command: plesk sbin sslmng –services=nginx –custom –ciphers=’EECDH+AESGCM+AES128:EECDH+AESGCM+AES256:EDH+AESGCM+AES128:EDH+AESGCM+AES256:EECDH+SHA256+AES128:EECDH+SHA384+AES256:EDH+SHA256+AES128:EDH+SHA256+AES256:EECDH+SHA1+AES128:EECDH+SHA1+AES256:EDH+SHA1+AES128:EDH+SHA1+AES256:EECDH+HIGH:EDH+HIGH:AESGCM+AES128:AESGCM+AES256:SHA256+AES128:SHA256+AES256:SHA1+AES128:SHA1+AES256:HIGH:!aNULL:’
Daily Archives: October 19, 2017
Server negotiated HTTP/2 with blacklisted suite
Symptoms HTTP/2 support is enabled on a sever. When trying to analyze a domain at SSLLabs the following error is reported: Server negotiated HTTP/2 with blacklisted suite RSA 2048 (SHA256) | TLS 1.2 > h2 | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA | ECDH secp256r1 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA is blacklisted for HTTP/2. Cause An nginx misconfiguration – blacklisted ciphers are used prior to acceptable ones. …
Continue reading “Server negotiated HTTP/2 with blacklisted suite”