hoellen/dockerfiles
1
0
Fork 0
mirror of https://github.com/hoellen/dockerfiles.git synced 2025-04-20 20:39:18 +00:00
Code Issues Projects Releases Wiki Activity

boring-nginx: add CECPQ1+CHACHA20 to ssl_params

Browse Source
This commit is contained in:
Wonderfall 2016-10-08 21:54:54 +02:00 committed by GitHub
parent 8dd10dbb47
commit e3aa977bd1
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
boring-nginx/ssl_params
View File

@ -1,6 +1,6 @@
ssl_protocols TLSv1.2; ssl_protocols TLSv1.2;
ssl_ecdh_curve X25519:P-521:P-384; ssl_ecdh_curve X25519:P-521:P-384;
ssl_ciphers CECPQ1-ECDSA-AES256-GCM-SHA384:CECPQ1-RSA-AES256-GCM-SHA384:[ECDHE-ECDSA-CHACHA20-POLY1305|ECDHE-RSA-CHACHA20-POLY1305|ECDHE-ECDSA-CHACHA20-POLY1305-D|ECDHE-RSA-CHACHA20-POLY1305-D|ECDHE-ECDSA-AES256-GCM-SHA384|ECDHE-RSA-AES256-GCM-SHA384]:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256; ssl_ciphers [CECPQ1-ECDSA-CHACHA20-POLY1305-SHA256|CECPQ1-ECDSA-AES256-GCM-SHA384|CECPQ1-RSA-CHACHA20-POLY1305-SHA256|CECPQ1-RSA-AES256-GCM-SHA384]:[ECDHE-ECDSA-CHACHA20-POLY1305|ECDHE-RSA-CHACHA20-POLY1305|ECDHE-ECDSA-CHACHA20-POLY1305-D|ECDHE-RSA-CHACHA20-POLY1305-D|ECDHE-ECDSA-AES256-GCM-SHA384|ECDHE-RSA-AES256-GCM-SHA384]:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256;
ssl_prefer_server_ciphers on; ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:20m; ssl_session_cache shared:SSL:20m;