UNPKG

hardhttps

Version:

Make an https server that is more resistant to client-initiated renegotiations, and other common security mistakes.

github.com/isaacs/hardhttps

isaacs/hardhttps

20 lines (13 loc) 484 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
# hardhttps Make an https server that is more resistant to client-initiated renegotiations, and other common security mistakes. Not quite an A+ yet, but getting there. ## Usage ```javascript var https = require('hardhttps') https.createServer(options, handler) ``` The API is exactly the same as the built-in https module, but `createServer` is a little bit tweaked: 1. If the secureConnection socket has an error, then it is destroyed. 2. Only the finest TLS ciphers are used.