How to enable TLS 1.2 and TLS 1.3 in Linux?

JoshWP Team Updated on
How to enable TLS 1.2 and TLS 1.3 in Linux

Have you been wondering how to enable TLS 1.2 and TLS 1.3 in Linux?

TLS (Transport Layer Security) is a cryptographic protocol that provides secure communication over the internet. It is used to establish secure connections between clients and servers, and it is used to encrypt data transmitted between them. There are several versions of TLS, with TLS 1.0, 1.2, and 1.3 being the most commonly used. In this article, we will show you how to enable TLS 1.2 and 1.3 in Linux.

To disable TLS 1.0 and enable TLS 1.2 and 1.3 in Linux, you will need to edit the configuration files of your web server software. The exact steps will vary depending on the web server software you are using. Here are the steps for some common web servers:

Related: How to enable TLS 1.2 and TLS 1.3 in Plesk panel

How to enable TLS 1.2 and TLS 1.3 in Apache

  1. Open the Apache configuration file in a text editor. The file is usually located at /etc/apache2/apache2.conf.
  2. Add the following lines to the configuration file:
SSLProtocol all -TLSv1 -TLSv1.1
SSLHonorCipherOrder on
SSLCipherSuite ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256
  1. Save the configuration file and restart Apache.

How to enable TLS 1.2 and TLS 1.3 in Nginx

  1. Open the Nginx configuration file in a text editor. The file is usually located at /etc/nginx/nginx.conf.
  2. Add the following lines to the configuration file:
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256;
  1. Save the configuration file and restart Nginx.


How to enable TLS 1.2 and TLS 1.3 in Lighttpd

  1. Open the Lighttpd configuration file in a text editor. The file is usually located at /etc/lighttpd/lighttpd.conf.
  2. Add the following lines to the configuration file:
ssl.honor-cipher-order = "enable"
ssl.cipher-list = "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECD

Disclosure: We may earn commission for purchases that are made by visitors on this site at no additional cost on your end. All information is for educational purposes and is not intended for financial advice. Read our affiliate disclosure.

Share this:

JoshWP Team

JoshWP Team comprises of WordPress and Tech experts led by Joshua, dedicated to providing quality tips and hacks on WordPress, Technology, and Finance.

Similar Posts

How to enable TLS 1.2 and TLS 1.3 in Plesk panel

How to enable TLS 1.2 and TLS 1.3 in Plesk panel

ByJoshWP Team

Have you been seeing an SSL warning on your site and wondering how to enable TLS 1.2 and TLS 1.3 in Plesk panel? Plesk is a popular control panel for managing web hosting environments. It allows you to easily manage your websites, emails, and databases, as well as other aspects of your hosting environment. Transport…

6 Best WordPress security plugins

6 Best WordPress security plugins

ByJoshWP Team

WordPress is gaining popularity day by day as it is currently used by millions of websites around the world. While this free software offers a lot of functionality, it is easily susceptible to security threats. According to an iThemes report, cyberattacks have surged by 300% this year as hackers work harder to take advantage of…

5 Different types of redirections

5 Different types of redirections

ByJoshWP Team

Redirections are used to send users and search engines to a different URL than the one they originally requested. While working on your website, sometimes you may choose to change your post’s URL, or even transfer your entire site to a new domain name. You will need to redirect all the old site’s URLs to…

How to fix the ERR_TOO_MANY_REDIRECTS on Plesk

How to fix the ERR_TOO_MANY_REDIRECTS on Plesk

ByJoshWP Team

Are you seeing this error (ERR_TOO_MANY_REDIRECTS) when trying to access your website URL? We just resolved the same issue on a client’s website. His website is hosted on a Plesk panel. There are a few ways to go around this problem. I will not bother you with the general solutions such as clearing your browser’s…

6 Best church donation plugins and church giving apps

6 Best church donation plugins and church giving apps

ByJoshWP Team

Are you looking for the best WordPress church donation plugins and church fundraising apps? In this article, I will explain some of the best fundraiser and donation plugins for churches and examine the features of each. What are the best church donation plugins and church giving apps? GiveWP GiveWP is a popular church donation plugin…

9 Best WordPress caching plugins for improving site speed

9 Best WordPress caching plugins for improving site speed

ByJoshWP Team

Are you looking for the best WordPress caching plugins? Caching is an essential aspect of website performance, as it helps to reduce the load on the server and speed up the delivery of content to users. If you’re using WordPress to power your website, you have a range of caching plugins to choose from that…

Leave a Reply

Your email address will not be published. Required fields are marked *