determining which SSL ciphers to use in server block
I am following along to the tutorial how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-14-04 and on Step 3 the author suggests I allow only “the most secure SSL protocols and ciphers” and then provides ciphers within some code to add to my server block.
I was wondering if anyone can explain how the author came to decide on these ciphers specifically? After searching I found lots of other ciphers such as the ones provided on mozilla.org or a recommended suite from https://raymii.org.
Could I use these ciphers instead? Should I?
Thanks for reading. As you can see I am trying to understand ciphers.
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.