nginx:tls
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | |||
nginx:tls [2015-03-18 11:38] – added nginx config gabriel | nginx:tls [2015-03-18 11:40] (current) – [Basic nginx configuration] gabriel | ||
---|---|---|---|
Line 16: | Line 16: | ||
# HTTP Strict Transport Security header | # HTTP Strict Transport Security header | ||
add_header Strict-Transport-Security " | add_header Strict-Transport-Security " | ||
- | # enables all versions of TLS, but not SSLv2 or 3 which are weak and now deprecated or TLSv1 which has | + | # enables all versions of TLS, but not SSLv2 or 3 which are weak and now |
- | # its own problems | + | # deprecated or TLSv1 which has its own problems |
ssl_protocols TLSv1.1 TLSv1.2; | ssl_protocols TLSv1.1 TLSv1.2; | ||
ssl_prefer_server_ciphers on; | ssl_prefer_server_ciphers on; | ||
- | # disables all weak ciphers and prefers AESGCM but fall back to other elliptic curve ciphers if necessary | + | # disables all weak ciphers and prefers AESGCM but fall back to other |
+ | # elliptic curve ciphers if necessary | ||
ssl_ciphers " | ssl_ciphers " | ||
</ | </ |
nginx/tls.txt · Last modified: 2015-03-18 11:40 by gabriel