Permalink
Name already in use
A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
certbot/certbot-nginx/certbot_nginx/_internal/tls_configs/options-ssl-nginx.conf
Go to fileThis commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Cite Mozilla ssl-config in Apache/nginx TLS configs (#8670) * Update CHANGELOG * Add TLS config hashes to ALL_SSL_OPTIONS_HASHES * Update wording in CHANGELOG
14 lines (11 sloc)
774 Bytes
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This file contains important security parameters. If you modify this file | |
| # manually, Certbot will be unable to automatically provide future security | |
| # updates. Instead, Certbot will print and log an error message with a path to | |
| # the up-to-date file that you will need to refer to when manually updating | |
| # this file. Contents are based on https://ssl-config.mozilla.org | |
| ssl_session_cache shared:le_nginx_SSL:10m; | |
| ssl_session_timeout 1440m; | |
| ssl_session_tickets off; | |
| ssl_protocols TLSv1.2 TLSv1.3; | |
| ssl_prefer_server_ciphers off; | |
| ssl_ciphers "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"; |