How to enable TLS 1.2 and TLS 1.3 in Linux?

JoshWP Team Posted on
How to enable TLS 1.2 and TLS 1.3 in Linux

Have you been wondering how to enable TLS 1.2 and TLS 1.3 in Linux?

TLS (Transport Layer Security) is a cryptographic protocol that provides secure communication over the internet. It is used to establish secure connections between clients and servers, and it is used to encrypt data transmitted between them. There are several versions of TLS, with TLS 1.0, 1.2, and 1.3 being the most commonly used. In this article, we will show you how to enable TLS 1.2 and 1.3 in Linux.

To disable TLS 1.0 and enable TLS 1.2 and 1.3 in Linux, you will need to edit the configuration files of your web server software. The exact steps will vary depending on the web server software you are using. Here are the steps for some common web servers:

Related: How to enable TLS 1.2 and TLS 1.3 in Plesk panel

How to enable TLS 1.2 and TLS 1.3 in Apache

  1. Open the Apache configuration file in a text editor. The file is usually located at /etc/apache2/apache2.conf.
  2. Add the following lines to the configuration file:
SSLProtocol all -TLSv1 -TLSv1.1
SSLHonorCipherOrder on
SSLCipherSuite ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256
  1. Save the configuration file and restart Apache.

How to enable TLS 1.2 and TLS 1.3 in Nginx

  1. Open the Nginx configuration file in a text editor. The file is usually located at /etc/nginx/nginx.conf.
  2. Add the following lines to the configuration file:
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256;
  1. Save the configuration file and restart Nginx.


How to enable TLS 1.2 and TLS 1.3 in Lighttpd

  1. Open the Lighttpd configuration file in a text editor. The file is usually located at /etc/lighttpd/lighttpd.conf.
  2. Add the following lines to the configuration file:
ssl.honor-cipher-order = "enable"
ssl.cipher-list = "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECD

Disclosure: We may earn commission for purchases that are made by visitors on this site at no additional cost on your end. All information is for educational purposes and is not intended for financial advice. Read our affiliate disclosure.

Share this:

JoshWP Team

JoshWP Team comprises of WordPress and Tech experts led by Joshua, dedicated to providing quality tips and hacks on WordPress, Technology, and Finance.

Similar Posts

  • IP Geolocation Databases: The Complete Guide

    ByJoshWP Team

    IP Geolocation Databases: The Complete Guide for Understanding the technology that powers location-based intelligence in the digital world IP geolocation databases have become an essential technology for businesses seeking to harness location-based intelligence in today’s digital landscape. These powerful tools map IP addresses to physical locations, providing valuable insights that drive personalization, security, and business…

  • How to fix the ERR_TOO_MANY_REDIRECTS on Plesk

    ByJoshWP Team

    Are you seeing this error (ERR_TOO_MANY_REDIRECTS) when trying to access your website URL? We just resolved the same issue on a client’s website. His website is hosted on a Plesk panel. There are a few ways to go around this problem. I will not bother you with the general solutions such as clearing your browser’s…

  • 6 Best WordPress security plugins

    ByJoshWP Team

    WordPress is gaining popularity day by day as it is currently used by millions of websites around the world. While this free software offers a lot of functionality, it is easily susceptible to security threats. According to an iThemes report, cyberattacks have surged by 300% this year as hackers work harder to take advantage of…

  • What to do after publishing a website

    ByJoshWP Team

    Congratulations on publishing your WordPress website! Publishing a WordPress website is an exciting moment, but it is just the first step in the long process of maintaining and improving your online presence. Here are some things you should consider doing after publishing your WordPress website: 11 Things to do after publishing a website Optimize your…

  • Journalist AI Review: Your Secret Weapon for Blogging Success

    ByJoshWP Team

    In the world of blogging, finding the right tools can make all the difference. Today, we’re diving deep into a comprehensive Journalist AI review that explores this innovative software designed to assist bloggers in crafting high-quality content. If you’ve ever struggled with maintaining your unique voice while using AI tools, this review is for you….

  • How to Use Geolocation Features on Your Website to Increase Conversions

    ByJoshWP Team

    How to Use Geolocation Features on Your Website to Increase Conversions Master the art of location-based personalization to boost your website conversions by up to 300%. This comprehensive guide covers implementation strategies, statistical insights, and proven techniques. Table of Contents 1. Introduction to Geolocation and Conversions 2. Statistical Impact of Geolocation on Conversions 3. Types…

Leave a Reply

Your email address will not be published. Required fields are marked *