阿西河

所有教程

公众号
🌙
阿西河前端的公众号

我的收藏

    最近访问  (文章)

      教程列表

      抓包专区
      测试专区

      Node.js crypto OpenSSL 选项

      Node.js crypto OpenSSL 选项

      ConstantDescription
      SSL_OP_ALLApplies multiple bug workarounds within OpenSSL. See https://www.openssl.org/docs/man1.0.2/ssl/SSL_CTX_set_options.html for detail.
      SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATIONAllows legacy insecure renegotiation between OpenSSL and unpatched clients or servers. See https://www.openssl.org/docs/man1.0.2/ssl/SSL_CTX_set_options.html.
      SSL_OP_CIPHER_SERVER_PREFERENCEAttempts to use the server’s preferences instead of the client’s when selecting a cipher. Behavior depends on protocol version. See https://www.openssl.org/docs/man1.0.2/ssl/SSL_CTX_set_options.html.
      SSL_OP_CISCO_ANYCONNECTInstructs OpenSSL to use Cisco’s “speshul” version of DTLS_BAD_VER.
      SSL_OP_COOKIE_EXCHANGEInstructs OpenSSL to turn on cookie exchange.
      SSL_OP_CRYPTOPRO_TLSEXT_BUGInstructs OpenSSL to add server-hello extension from an early version of the cryptopro draft.
      SSL_OP_DONT_INSERT_EMPTY_FRAGMENTSInstructs OpenSSL to disable a SSL 3.0/TLS 1.0 vulnerability workaround added in OpenSSL 0.9.6d.
      SSL_OP_EPHEMERAL_RSAInstructs OpenSSL to always use the tmp_rsa key when performing RSA operations.
      SSL_OP_LEGACY_SERVER_CONNECTAllows initial connection to servers that do not support RI.
      SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER
      SSL_OP_MICROSOFT_SESS_ID_BUG
      SSL_OP_MSIE_SSLV2_RSA_PADDINGInstructs OpenSSL to disable the workaround for a man-in-the-middle protocol-version vulnerability in the SSL 2.0 server implementation.
      SSL_OP_NETSCAPE_CA_DN_BUG
      SSL_OP_NETSCAPE_CHALLENGE_BUG
      SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG
      SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
      SSL_OP_NO_COMPRESSIONInstructs OpenSSL to disable support for SSL/TLS compression.
      SSL_OP_NO_QUERY_MTU
      SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATIONInstructs OpenSSL to always start a new session when performing renegotiation.
      SSL_OP_NO_SSLv2Instructs OpenSSL to turn off SSL v2
      SSL_OP_NO_SSLv3Instructs OpenSSL to turn off SSL v3
      SSL_OP_NO_TICKETInstructs OpenSSL to disable use of RFC4507bis tickets.
      SSL_OP_NO_TLSv1Instructs OpenSSL to turn off TLS v1
      SSL_OP_NO_TLSv1_1Instructs OpenSSL to turn off TLS v1.1
      SSL_OP_NO_TLSv1_2Instructs OpenSSL to turn off TLS v1.2
      SSL_OP_PKCS1_CHECK_1
      SSL_OP_PKCS1_CHECK_2
      SSL_OP_SINGLE_DH_USEInstructs OpenSSL to always create a new key when using temporary/ephemeral DH parameters.
      SSL_OP_SINGLE_ECDH_USEInstructs OpenSSL to always create a new key when using temporary/ephemeral ECDH parameters.
      SSL_OP_SSLEAY_080_CLIENT_DH_BUG
      SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG
      SSL_OP_TLS_BLOCK_PADDING_BUG
      SSL_OP_TLS_D5_BUG
      SSL_OP_TLS_ROLLBACK_BUGInstructs OpenSSL to disable version rollback attack detection.

      更多内容请参考:Node.js crypto 加密,或者通过 点击对应菜单 进行查看;


      目录
      本文目录
      目录