Should I set diffie helman parameters for nginx ssl

nginx ssl

I have set up nginx with ssl. Everything works perfectly, with online tools giving the domain a good score.

Now I am wondering about one particular nginx configuration option; ssl_dhparam. Should I generate and set these parameters? Does it have any influence on security or computational load of ssl?


Solution 1:

Should I generate and set these parameters?

Yes.

Does it have any influence on [the] security...of ssl?

Yes, when enabling Perfect Forward Secrecy. An appropriate ciphersuite must also be configured.

If a future attacker compromises your TLS, with PFS past traffic they intercepted and retained still cannot be decrypted.

Generate a DHE prime no smaller than your SSL certificate RSA private key. Given a 2048 bit private key:

$ openssl dhparam -out dhparam.pem 2048
Generating DH parameters, 2048 bit long safe prime, generator 2
..+..+...............+

Does it have any influence on [the]...computational load of ssl?

Too little to worry about.

  • conventional wisdom that TLS is slow is outdated
  • the advantage of PFS outweighs the cost
  • TLS is well handled by modern CPUs; adding DH has a minor incremental cost compared to the total cost of TLS
  • this cost is only incurred during the TLS handshake; a well-tuned TLS does the handshake infrequently or otherwise reduces the cost with session resumption, false-start, OCSP stapling, and more

Google I/O 2014 had a good HTTPS Everwhere talk which covered these and related topics in a broad fashion.

Solution 2:

Diffie helman is a good algorithm for key exchange but it takes too much time for computation slowing your website down. I recommend using RC4-SHA which is weaker than DH but serve its purpose. If it helps, google.com uses RC4-SHA. You can check out the algorithm for any website using the following:

openssl s_client -host HOSTNAME -port 443

I suggest you check out what kind of key exchange and encryption other websites similar to yours are using and use a suitable algorithm.
Also read out this article on the same topic.

Related

Force Outlook 2007/2010 to use IP Address for Exchange Server instead of host name
Open source DCIM stack?
QEMU-KVM Linux virtualization on the command line
If I change a router's subnet mask to one that includes the old one, will the hosts with the old configuration still work?
Which is better, Split or Monolithic VMware disk in a production enviroment?
Multiples authentication methods for Postgresql
How do I pass arguments from the PXE command line to a kickstart %pre, %post script?
ZFS replication between 2 ZFS file systems
httpd.conf variables : What is the difference between ${var} and %{var}?
How to use AD/GPO/Print Services to "push out" a new printer driver to replace a broken one? How did my server get a broken driver?
Different puppet modules with one common resource
What does the error message 'Attempt to serve directory' mean in apache log?