nickslowinski/mailcow-dockerized-docs
1
0
Fork 0
Code Issues Pull-Requests Projekte Releases Pakete Wiki Aktivität

Added optional "secure" ssl settings to nginx rp example

Quellcode durchsuchen
Dieser Commit ist enthalten in:
Alexandre 2020-04-23 19:09:09 -04:00
Ursprung 987df75375
Commit 0c173c97e7
1 geänderte Dateien mit 7 neuen und 1 gelöschten Zeilen
Statistiken anzeigen Patch-Datei herunterladen Diff-Datei herunterladen Alle Dateien ausklappen Alle Dateien einklappen

8
docs/firststeps-rp.md
Datei anzeigen

@ -93,7 +93,7 @@ Let's Encrypt will follow our rewrite, certificate requests will work fine.
**Take care of highlighted lines.** **Take care of highlighted lines.**
``` hl_lines="4 10 12 13 23 37" ``` hl_lines="4 10 12 13 29 43"
server { server {
listen 80 default_server; listen 80 default_server;
listen [::]:80 default_server; listen [::]:80 default_server;
@ -115,6 +115,12 @@ server {
ssl_ciphers HIGH:!aNULL:!MD5:!SHA1:!kRSA; ssl_ciphers HIGH:!aNULL:!MD5:!SHA1:!kRSA;
ssl_prefer_server_ciphers off; ssl_prefer_server_ciphers off;
# Recommended ssl settings if your system supports it
# See https://ssl-config.mozilla.org/#server=nginx for latest ssl settings recommendations
#ssl_protocols TLSv1.2 TLSv1.3;
#ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
#ssl_prefer_server_ciphers off;
location /Microsoft-Server-ActiveSync { location /Microsoft-Server-ActiveSync {
proxy_pass http://127.0.0.1:8080/Microsoft-Server-ActiveSync; proxy_pass http://127.0.0.1:8080/Microsoft-Server-ActiveSync;
proxy_set_header Host $http_host; proxy_set_header Host $http_host;