blob: cca9646e1491d4d4bc8f5d3d4d0fad5e1a17936a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
|
ssl_session_cache shared:SSL:20m;
ssl_session_timeout 5m;
# This is in nginx.conf
# ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
# ssl_prefer_server_ciphers on;
ssl_ciphers "ECDH+AESGCM:ECDH+AES256:ECDH+AES128:!ADH:!AECDH:!MD5:!aNULL:!eNULL:!NULL";
ssl_dhparam /etc/nginx/dhparam.pem;
ssl_stapling on;
ssl_stapling_verify on;
add_header Strict-Transport-Security "max-age=31536000;includeSubdomains";
|
