How to disable TLS 1.0 and TLS 1.1 in Nginx

The TLS 1.0 protocol appeared in 1999, TLS 1.1 in 2006, and they will both be considered obsolete in 2020, and will also have to be removed from support in various browsers around March 2020, so you need to disable them. Similarly, SSL 2.0, SSL 3.0 protocols were previously outdated.

Continue reading “How to disable TLS 1.0 and TLS 1.1 in Nginx”

The problem with multiple SSL on the same IP

If there are several sites with SSL on the same IP address, then old ancient browsers that do not support SNI will not be able to determine which certificate to download and will most likely download the first one that is registered at the beginning of the web server configuration.

Continue reading “The problem with multiple SSL on the same IP”

WordPress. Solution “cURL error 60: SSL certificate problem: unable to get local issuer certificate”

Once on one of the sites I noticed in WordPress the menu “Tools” – “Site Health” the following errors:

Continue reading “WordPress. Solution “cURL error 60: SSL certificate problem: unable to get local issuer certificate””

cPanel. Solution of the error “dovecot: pop3-login: Disconnected (no auth attempts in 0 secs)”

Recently, Dovecot was automatically updated on one of the servers with cPanel, and the PHP self-recording system stopped importing letters, that is, it could not connect to the mail server, in the log file /var/log/maillog I discovered the following:

Continue reading “cPanel. Solution of the error “dovecot: pop3-login: Disconnected (no auth attempts in 0 secs)””