1
response

Hello,

I would like to ask you if there is option for nxlog community edition to disable TLS (module im_ssl) renegotiation for nxlog community edition or if the renegotiations are compliant with RFC 5746?

Thanks for letting me know.

Kind regards,

Marek

AskedJuly 16, 2019 - 9:21pm

Answer (1)

TLS is handled by the openssl library.
With the NXLog Enterprise Edition you can explicitly set the allowed ssl protocols. Renegotiation is not possible with TLSv1.3 which could be enforced if renegotiation is a concern.