Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
S
servers-config
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
Gruppo Sistemisti
servers-config
Commits
3705c7e8
Commit
3705c7e8
authored
Mar 15, 2018
by
Mattia Rizzolo
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
nginx: generate dh params
Signed-off-by:
Mattia Rizzolo
<
mattia@debian.org
>
parent
ec7457ea
Changes
2
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
6 additions
and
1 deletion
+6
-1
roles/nginx/tasks/setup.yml
roles/nginx/tasks/setup.yml
+5
-0
roles/nginx/templates/conf.d/misc.conf
roles/nginx/templates/conf.d/misc.conf
+1
-1
No files found.
roles/nginx/tasks/setup.yml
View file @
3705c7e8
...
@@ -42,6 +42,11 @@
...
@@ -42,6 +42,11 @@
notify
:
notify
:
-
common.reload-firewall
-
common.reload-firewall
-
name
:
Generate Diffie-Hellman params
command
:
openssl dhparam -out /etc/nginx/dhparam.pem
4096
args
:
creates
:
/etc/nginx/dhparam.pem
-
name
:
Add an hook to reload nginx when there are new ssl keys
-
name
:
Add an hook to reload nginx when there are new ssl keys
template
:
template
:
src
:
reload-nginx
src
:
reload-nginx
...
...
roles/nginx/templates/conf.d/misc.conf
View file @
3705c7e8
...
@@ -13,4 +13,4 @@ ssl_session_cache shared:SSL:5m;
...
@@ -13,4 +13,4 @@ ssl_session_cache shared:SSL:5m;
ssl_protocols
TLSv1
TLSv1
.
1
TLSv1
.
2
;
ssl_protocols
TLSv1
TLSv1
.
1
TLSv1
.
2
;
ssl_ciphers
HIGH
:!
aNULL
:!
eNULL
:!
EXP
:!
LOW
:!
MD5
;
ssl_ciphers
HIGH
:!
aNULL
:!
eNULL
:!
EXP
:!
LOW
:!
MD5
;
ssl_prefer_server_ciphers
on
;
ssl_prefer_server_ciphers
on
;
#
ssl_dhparam dhparams.pem;
ssl_dhparam
dhparams
.
pem
;
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment