Apache
1 基础知识
1.1 TLS版本现状
– 目前TLS 1.2和TLS 1.3以外的所有协议均被视为不安全
– 显示是许多Web服务器平台默认仍启用TLS 1.0和TLS 1.1
– 实际情况是当前所有Web浏览器都与TLS 1.2兼容
1.2 确认服务器支持的协议
nmap --script ssl-enum-ciphers -p <PORT> <DOMAIN NAME>
1.3 测试服务器的协议
openssl s_client -connect <DOMAIN NAME>:<PORT>
2 最佳实践
2.1 操作的环境
2.2 确认站点支持的SSL/TLS版本
2.2.1 安装工具
dnf install -y nmap
2.2.2 扫描站点域名
nmap --script ssl-enum-ciphers -p 443 nextcloud.cmdschool.org
可见如下显示,
Starting Nmap 7.70 ( https://nmap.org ) at 2020-12-09 20:12 EST Nmap scan report for nextcloud.cmdschool.org (10.168.0.80) Host is up (0.000053s latency). PORT STATE SERVICE 443/tcp open https | ssl-enum-ciphers: | TLSv1.0: | ciphers: | TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 2048) - A | TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 2048) - A | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A | TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A | TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A | compressors: | NULL | cipher preference: client | TLSv1.1: | ciphers: | TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 2048) - A | TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 2048) - A | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A | TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A | TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A | compressors: | NULL | cipher preference: client | TLSv1.2: | ciphers: | TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 2048) - A | TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 (dh 2048) - A | TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (dh 2048) - A | TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 2048) - A | TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 (dh 2048) - A | TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (dh 2048) - A | TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (dh 2048) - A | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (secp256r1) - A | TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (secp256r1) - A | TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A | TLS_RSA_WITH_AES_128_CBC_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_128_GCM_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A | TLS_RSA_WITH_AES_256_CBC_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 2048) - A | compressors: | NULL | cipher preference: client |_ least strength: A Nmap done: 1 IP address (1 host up) scanned in 0.54 seconds
注:以上可见当前服务器开启的TLS协议版本包括TLSv1.0、TLSv1.1和TLSv1.2
2.3 禁用非安全的协议
vim /etc/httpd/conf.d/nextcloud.conf
参数修改如下,
#... <VirtualHost *:443> #... SSLEngine on SSLProtocol all -SSLv3 -TLSv1 -TLSv1.1 SSLHonorCipherOrder on SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:DHE-DSS-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA256:ECDH-RSA-AES256-GCM-SHA384:ECDH-ECDSA-AES256-GCM-SHA384:ECDH-RSA-AES256-SHA384:ECDH-ECDSA-AES256-SHA384:AES256-GCM-SHA384:AES256-SHA256 SSLCertificateFile /etc/httpd/2_nextcloud.cmdschool.org.crt SSLCertificateKeyFile /etc/httpd/3_nextcloud.cmdschool.org.key SSLCertificateChainFile /etc/httpd/1_root_bundle.crt #... </VirtualHost> #...
配置参数解析如下,
– “SSLProtocol”参数定义当前服务器去掉“TLSv3”、“TLSv1”和“TLSv1.1”的支持
– “SSLCipherSuite”参数定义安全的加密集合
2.4 重载使配置生效
systemctl reload httpd.service
2.5 使用客户端检查
openssl s_client -connect nextcloud.cmdschool.org:443 -servername nextcloud.cmdschool.org
可见如下显示,
CONNECTED(00000003)
depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
verify return:1
depth=1 C = CN, O = "TrustAsia Technologies, Inc.", OU = Domain Validated SSL, CN = TrustAsia TLS RSA CA
verify return:1
depth=0 CN = nextcloud.cmdschool.org
verify return:1
---
Certificate chain
0 s:CN = nextcloud.cmdschool.org
i:C = CN, O = "TrustAsia Technologies, Inc.", OU = Domain Validated SSL, CN = TrustAsia TLS RSA CA
1 s:C = CN, O = "TrustAsia Technologies, Inc.", OU = Domain Validated SSL, CN = TrustAsia TLS RSA CA
i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = nextcloud.cmdschool.org
issuer=C = CN, O = "TrustAsia Technologies, Inc.", OU = Domain Validated SSL, CN = TrustAsia TLS RSA CA
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3225 bytes and written 411 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 065F5FBF5E181FB88A2E6A3ABD587DAD324DCFB24EFCDF3E070919E1091D3D1D
Session-ID-ctx:
Resumption PSK: 8ECC6065C12AA151401542DB02AFF986955A08819BDB3D62AF4A717FAF27F18583941C8EBC9BA2AAA5E1745BC2EBA582
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - 7e 1e db db 31 31 eb 3b-dc 16 5b 56 bf 5f 0c cc ~...11.;..[V._..
0010 - 1f cf 9b cb f2 07 ae ea-a9 ef a2 ca 9d 12 97 4e ...............N
0020 - 04 94 1c 15 a1 2d 9f d6-15 7d 79 84 cc 6c 0d 4d .....-...}y..l.M
0030 - ad b3 fd 3e cb 1e 32 00-06 d8 02 61 e4 3d e1 3e ...>..2....a.=.>
0040 - 05 f6 07 7a 9a 35 c4 4f-6e a7 b6 c4 7b 66 a1 4b ...z.5.On...{f.K
0050 - 1b c5 d3 b4 52 f4 d9 d0-f0 d0 65 14 77 b7 b3 26 ....R.....e.w..&
0060 - cb 83 d5 78 bc 65 05 6f-cc 17 ba 9d e8 35 ec 99 ...x.e.o.....5..
0070 - 8a db 82 94 8d a6 65 25-40 ed e4 5b 97 6d a0 84 ......e%@..[.m..
0080 - 34 d8 20 91 2e 75 63 9d-3e ec a1 f7 4b c5 ce d7 4. ..uc.>...K...
0090 - 47 ef 50 8c 70 0c 94 da-7c 8b 6b 58 99 7a 2b 3e G.P.p...|.kX.z+>
00a0 - 89 5f bd 13 ee 72 aa fa-81 51 38 a2 1f e4 13 3d ._...r...Q8....=
00b0 - 0b ec d5 20 8e 6e ed d3-ca 65 f2 51 a3 d6 97 5d ... .n...e.Q...]
00c0 - b3 e3 db 4e 3e ef b0 bb-a9 66 1e 7b a9 69 f0 8c ...N>....f.{.i..
00d0 - ca 41 9d 6e 4a 3e f8 4f-36 98 1f 52 1d 96 0c 0b .A.nJ>.O6..R....
00e0 - 6e ca f6 d8 ff 72 55 a0-a8 14 a8 9b 6e 11 95 bd n....rU.....n...
00f0 - c6 6c 7f 3e a2 84 81 b0-0e 11 79 b9 35 f8 1d de .l.>......y.5...
Start Time: 1607563092
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 62017E87817D6513734FA4DB2E064F39FC236B1243DFFE9A1C6D4E3A265370AA
Session-ID-ctx:
Resumption PSK: 6F6306521FF012415BEF34BBEB70759436D49440A4A7B3C258EEB74857ECCD528A5B5848C04D695901F3EF12A67593EC
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - 7e 1e db db 31 31 eb 3b-dc 16 5b 56 bf 5f 0c cc ~...11.;..[V._..
0010 - 0b 39 29 4e 65 c5 c1 83-ba 71 cd 0c 60 17 8a 38 .9)Ne....q..`..8
0020 - 53 7b c4 d7 36 c4 02 dd-c5 66 91 09 3c 75 18 22 S{..6....f..<u."
0030 - 85 0e 22 d7 c2 78 a0 bf-09 d3 62 68 a9 63 84 61 .."..x....bh.c.a
0040 - 37 ef ce 54 b3 26 d2 36-c7 7e a7 3d 05 d2 95 3b 7..T.&.6.~.=...;
0050 - ac 4c 09 fa ed 1f 27 3c-f3 0f 99 a4 15 b3 f0 2e .L....'<........
0060 - b8 a9 ea 39 4c 62 fb bf-2e d4 09 3c a9 6e ee c7 ...9Lb......U
00a0 - f5 78 91 72 69 1b 69 7f-2e 90 39 39 7b 9a bf de .x.ri.i...99{...
00b0 - ac 06 69 3a 7e db 94 6c-4c 5b a5 de 35 dd be db ..i:~..lL[..5...
00c0 - f0 19 e8 79 6e aa ff 48-f0 53 a3 d3 40 a3 eb 7c ...yn..H.S..@..|
00d0 - 3b fc 83 08 a8 6f 5a 8c-db bd ac c7 d5 b2 d1 f4 ;....oZ.........
00e0 - 0f 59 f1 6f f2 c4 e2 28-6d e2 a3 d4 5a fd 7b 50 .Y.o...(m...Z.{P
00f0 - 52 d4 28 63 3b fb ae 53-8b 18 7e a5 ca 78 0f 1b R.(c;..S..~..x..
Start Time: 1607563092
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
closed
如果你尝试用低版本协议链接,可尝试如下命令,
openssl s_client -connect nextcloud.cmdschool.org:443 -servername nextcloud.cmdschool.org -tls1
会收到如下拒绝信息,
CONNECTED(00000003)
140236387342144:error:1409442E:SSL routines:ssl3_read_bytes:tlsv1 alert protocol version:ssl/record/rec_layer_s3.c:1543:SSL alert number 70
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 136 bytes
Verification: OK
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1
Cipher : 0000
Session-ID:
Session-ID-ctx:
Master-Key:
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1607563505
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
---
另外,也可以之前的命令测试,
nmap --script ssl-enum-ciphers -p 443 nextcloud.cmdschool.org
可见如下显示,
Starting Nmap 7.70 ( https://nmap.org ) at 2020-12-09 20:22 EST Nmap scan report for nextcloud.cmdschool.org (10.168.0.80) Host is up (0.000051s latency). PORT STATE SERVICE 443/tcp open https | ssl-enum-ciphers: | TLSv1.2: | ciphers: | TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (ecdh_x25519) - A | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (ecdh_x25519) - A | TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (dh 2048) - A | TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 (dh 2048) - A | TLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 2048) - A | TLS_RSA_WITH_AES_256_CBC_SHA256 (rsa 2048) - A | compressors: | NULL | cipher preference: server |_ least strength: A Nmap done: 1 IP address (1 host up) scanned in 0.45 seconds
参阅文档
====================
https://www.ssl.com/guide/disable-tls-1-0-and-1-1-apache-nginx/
https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html
https://docs.nginx.com/nginx/admin-guide/security-controls/terminating-ssl-http/
没有评论