说明日期2026年3月10日HTTP有多种密码套件TLS 有多个版本我们需要使用安全性最强的而不是禁止使用安全性弱的。示例操作系统Alibaba Cloud Linux 3.2104 LTS 64位。应用node.js v22.15.1// 没有额外增强要求的HTTPS服务器创建方式consthttpsrequire(https);constPORTNumber(process.env.PORT||12121);functioncreateServer(){constkeyPathprocess.env.SSL_KEY_PATH||/home/ecs-user/ssl_certificate/privkey.pem;constcertPathprocess.env.SSL_CERT_PATH||/home/ecs-user/ssl_certificate/fullchain.pem;constcredentials{key:fs.readFileSync(keyPath),cert:fs.readFileSync(certPath)};returnhttps.createServer(credentials,app);}constservercreateServer().listen(PORT,HOST,(){constprotocolserverinstanceofhttps.Server?https:http;console.log(${protocol.toUpperCase()}server successfully launched:${protocol}://localhost:${PORT});});增加额外的安全要求// 没有额外增强要求的HTTPS服务器创建方式consthttpsrequire(https);constPORTNumber(process.env.PORT||12121);functioncreateServer(){constkeyPathprocess.env.SSL_KEY_PATH||/home/ecs-user/ssl_certificate/privkey.pem;constcertPathprocess.env.SSL_CERT_PATH||/home/ecs-user/ssl_certificate/fullchain.pem;constcredentials{key:fs.readFileSync(keyPath),cert:fs.readFileSync(certPath),ciphers:[ECDHE-ECDSA-AES128-GCM-SHA256,ECDHE-RSA-AES128-GCM-SHA256,ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AES256-GCM-SHA384,ECDHE-ECDSA-CHACHA20-POLY1305,ECDHE-RSA-CHACHA20-POLY1305,DHE-RSA-AES128-GCM-SHA256,DHE-RSA-AES256-GCM-SHA384,].join(:),ecdhCurve:secp384r1:prime256v1,minVersion:TLSv1.2,maxVersion:TLSv1.3,honorCipherOrder:true,};returnhttps.createServer(credentials,app);}constservercreateServer().listen(PORT,HOST,(){constprotocolserverinstanceofhttps.Server?https:http;console.log(${protocol.toUpperCase()}server successfully launched:${protocol}://localhost:${PORT});});主要修改内容弃用基于RSA的密钥交换配置中只保留了 ECDHE 和 DHE 密码套件完全移除了 RSA 密钥交换使用安全密码套件添加了经过安全审查的密码套件列表包括ECDHE-ECDSA-AES128-GCM-SHA256ECDHE-RSA-AES128-GCM-SHA256ECDHE-ECDSA-AES256-GCM-SHA384ECDHE-RSA-AES256-GCM-SHA384ECDHE-ECDSA-CHACHA20-POLY1305ECDHE-RSA-CHACHA20-POLY1305DHE-RSA-AES128-GCM-SHA256DHE-RSA-AES256-GCM-SHA384支持PFS前向保密配置了ecdhCurve: secp384r1:prime256v1支持椭圆曲线密钥交换所有密码套件都使用 ECDHE 或 DHE 临时密钥交换提供完全前向保密其他安全增强限制 TLS 版本为 1.2 到 1.3minVersion: TLSv1.2, maxVersion: TLSv1.3启用honorCipherOrder: true确保服务器优先使用更强的密码套件这些修改将显著提升web应用的TLS/SSL安全性。