Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
nixos/nginx: use Mozilla Intermediate TLS configuration
The configuration at https://ssl-config.mozilla.org/#server=nginx&config=intermediate is reliably kept up-to-date in terms of security and compatible with a wide range of clients. They've probably had more care and thought put into them than our defaults, and will be easier to keep updated in the future. The only removed (rather than changed) configuration option here is ssl_ecdh_curve, per mozilla/server-side-tls#189. Resolves NixOS#80952.
- Loading branch information