Permalink
Commits on Jan 5, 2015
  1. Merge pull request #53 from duy/disablesslv3

    disable SSLv3 in some of the configs.
    committed Jan 5, 2015
  2. disable SSLv3 in some of the configs.

    update also comments. Debian package sslscan doesn't check TLS v1.1 nor v1.2
    duy committed Jan 4, 2015
Commits on Oct 15, 2014
  1. Merge pull request #45 from ilf/poodle

    https-hsts.conf: SSLProtocol: whitelist TLSv* -> blacklist SSLv*
    committed Oct 15, 2014
  2. https-hsts.conf: SSLProtocol: whitelist TLSv* -> blacklist SSLv*

    as libraries expand, they'll get TLSv1.3 automatically. #43
    ilf committed Oct 15, 2014
  3. Merge pull request #44 from u451f/master

    Correct syntax for Strict-Transport-Security and subdomains
    committed Oct 15, 2014
  4. Merge pull request #43 from anarcat/patch-1

    disable SSLv3
    committed Oct 15, 2014
  5. Correct syntax for Strict-Transport-Security and subdomains

    At least on a Debian Wheezy, the previous line does not pass `apache2ctl configtest`.
    u451f committed Oct 15, 2014
  6. disable SSLv3

    the poodle killed it.
    anarcat committed Oct 15, 2014
Commits on Jul 2, 2014
  1. Merge pull request #35 from ilf/gpg.conf

    rework gpg.conf based on the Riseup OpenPGP Best Practices
    committed Jul 2, 2014
Commits on Jun 30, 2014
Commits on Nov 9, 2013
  1. Merge pull request #27 from mzeltner/master

    Adding lighttpd config
    committed Nov 9, 2013
  2. Adding lighttpd config

    Greetings from the Aaron Swartz Memorial Hackathon in NYC.
    eaon committed Nov 9, 2013
Commits on Sep 25, 2013
  1. Merge pull request #21 from bradchesney79/patch-1

    Update README
    committed Sep 25, 2013
  2. Merge pull request #20 from starhawking/master

    Changed a rewrite rule in the nginx config as per the nginx documentation.
    committed Sep 25, 2013
  3. Merge pull request #22 from saizai/patch-1

    Comment out Tor-specific config
    committed Sep 25, 2013
  4. Merge pull request #23 from lambda-co-at/master

    Update Ciphersuite
    committed Sep 25, 2013
Commits on Aug 2, 2013
  1. Update Ciphersuite

    this seems to work for almost all browsers and is a bit updated.
    azet committed Aug 2, 2013
Commits on Jul 22, 2013
  1. Comment out Tor-specific config

    saizai committed Jul 22, 2013
Commits on Jun 8, 2013
  1. Update README

    Just one necessary change from recovery to recover. The rest of the changes were just suggestions.
    bradchesney79 committed Jun 8, 2013
Commits on Apr 24, 2013
  1. Updated a rewrite

    Updated the rewrite rule to use a return statement instead as per the taxing rewrites section of the nginx wiki:
    http://wiki.nginx.org/Pitfalls#Taxing_Rewrites
    starhawking committed Apr 24, 2013
Commits on Apr 14, 2013
  1. Merge pull request #17 from ilf/patch-1

    OpenSSH HMAC: SHA1 -> SHA2-512
    committed Apr 14, 2013
  2. Merge pull request #18 from ilf/patch-2

    add GnuPG gpg.conf
    committed Apr 14, 2013
Commits on Apr 13, 2013
  1. OpenSSH HMAC: SHA1 -> SHA2-512

    ilf committed Apr 13, 2013
  2. change MACs from hmac-sha1 to hmac-sha1, as specified in RFC 6668 and…

    … implemented in OpenSSH 5.9
    ilf committed Apr 13, 2013
Commits on Apr 12, 2013
  1. Merge pull request #16 from jwilkins/patch-2

    better ciphersuite options
    committed Apr 12, 2013
  2. better ciphersuite options

    jwilkins committed Apr 12, 2013
Commits on Nov 6, 2012
  1. Merge pull request #9 from iFixit/master

    Enable TLSv1.1 and TLSv1.2 for Apache - thanks!
    committed Nov 6, 2012
  2. Enable TLSv1.1 and TLSv1.2 for Apache

    If linked against OpenSSL 1.0.1, mod_ssl can use v1.1 and v1.2 of TLS;
    manually specifying the versions to enable will prevent these from
    being used when available.
    
    http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslprotocol
    xiongchiamiov committed Nov 6, 2012
  3. Merge pull request #8 from cstromblad/patch-1

    Update configs/apache2/https-hsts.conf
    committed Nov 6, 2012
  4. Update configs/apache2/https-hsts.conf

    Incorrect spelling of SSLCompression.
    Christoffer Str��mblad committed Nov 6, 2012
Commits on Oct 26, 2012
  1. Merge pull request #7 from craSH/patch-1

    Add ECDHE-RSA-AES256-SHA to nginx.conf - thanks to craSH!
    committed Oct 26, 2012
Commits on Oct 25, 2012
  1. Add ECDHE-RSA-AES256-SHA to nginx.conf

     * Add the ECDHE-RSA-AES256-SHA (Elliptic Diffie Hellman Key Exchange, RSA Auth, AES256 confidentiality, SHA1 integrity) cipher suite to nginx configuration.
     * This cipher suite has been available in nginx since the release of version 1.1.0 (http://forum.nginx.org/read.php?2,213199,213215)
    craSH committed Oct 25, 2012
Commits on Oct 16, 2012
  1. Merge pull request #6 from jwilkins/master

    nginx improvements
    committed Oct 16, 2012