LoginSignup
2
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

More than 3 years have passed since last update.

@yu_bookstore()

Ubuntuでhttps接続時に「dh key too small」と出る

Posted at

概要

dockerにインストールしたUbuntuでhttps接続しようとしたら、「dh key too small」エラーが出て、接続できない。

原因

サーバーのセキュリティバージョンが古いため、サーバー側でセキュリティレベルを上げるか、クライアント側で下げる。

解決法

クライアント側しか触れないため、以下を修正(セキュリティレベルを下げる)。

/usr/lib/ssl/openssl.cnf
# 1行目に追加
openssl_conf = default_conf

...
...
...

# 最終行に追加
[ default_conf ]
ssl_conf = ssl_sect

[ssl_sect]
system_default = system_default_sect

[system_default_sect]
MinProtocol = TLSv1.2
CipherString = DEFAULT:@SECLEVEL=1

特に再読み込みなしで利用可。

2
0
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
Sign upLogin
2
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?