Update u_e-nginx.md
Dieser Commit ist enthalten in:
Ursprung
3725c094a7
Commit
ecc7eb2428
1 geänderte Dateien mit 16 neuen und 2 gelöschten Zeilen
|
@ -6,10 +6,17 @@ nano data/conf/nginx/my_custom_site.conf
|
||||||
|
|
||||||
A good template to begin with:
|
A good template to begin with:
|
||||||
|
|
||||||
``` hl_lines="9"
|
``` hl_lines="16"
|
||||||
server {
|
server {
|
||||||
ssl_certificate /etc/ssl/mail/cert.pem;
|
ssl_certificate /etc/ssl/mail/cert.pem;
|
||||||
ssl_certificate_key /etc/ssl/mail/key.pem;
|
ssl_certificate_key /etc/ssl/mail/key.pem;
|
||||||
|
ssl_protocols TLSv1.2 TLSv1.3;
|
||||||
|
ssl_prefer_server_ciphers on;
|
||||||
|
ssl_ciphers ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305;
|
||||||
|
ssl_ecdh_curve X25519:X448:secp384r1:secp256k1;
|
||||||
|
ssl_session_cache shared:SSL:50m;
|
||||||
|
ssl_session_timeout 1d;
|
||||||
|
ssl_session_tickets off;
|
||||||
index index.php index.html;
|
index index.php index.html;
|
||||||
client_max_body_size 0;
|
client_max_body_size 0;
|
||||||
root /web;
|
root /web;
|
||||||
|
@ -31,10 +38,17 @@ server {
|
||||||
|
|
||||||
Another example with a reverse proxy configuration:
|
Another example with a reverse proxy configuration:
|
||||||
|
|
||||||
``` hl_lines="9 21"
|
``` hl_lines="16 28"
|
||||||
server {
|
server {
|
||||||
ssl_certificate /etc/ssl/mail/cert.pem;
|
ssl_certificate /etc/ssl/mail/cert.pem;
|
||||||
ssl_certificate_key /etc/ssl/mail/key.pem;
|
ssl_certificate_key /etc/ssl/mail/key.pem;
|
||||||
|
ssl_protocols TLSv1.2 TLSv1.3;
|
||||||
|
ssl_prefer_server_ciphers on;
|
||||||
|
ssl_ciphers ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305;
|
||||||
|
ssl_ecdh_curve X25519:X448:secp384r1:secp256k1;
|
||||||
|
ssl_session_cache shared:SSL:50m;
|
||||||
|
ssl_session_timeout 1d;
|
||||||
|
ssl_session_tickets off;
|
||||||
index index.php index.html;
|
index index.php index.html;
|
||||||
client_max_body_size 0;
|
client_max_body_size 0;
|
||||||
root /web;
|
root /web;
|
||||||
|
|
Laden …
In neuem Issue referenzieren