overmind
/
matrix-docker-ansible-deploy
mirror of https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
Browse Source

Disable TLS 1.0 and enable TLS 1.3

pull/27/head
Aaron Raimist 7 years ago
parent
3bccec63b4
commit
3254a4d161
No known key found for this signature in database GPG Key ID: 37419210002890EF
2 changed files with 2 additions and 2 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +1
    -1
      roles/matrix-server/templates/nginx-conf.d/matrix-riot-web.conf.j2
  2. +1
    -1
      roles/matrix-server/templates/nginx-conf.d/matrix-synapse.conf.j2

+ 1
- 1
roles/matrix-server/templates/nginx-conf.d/matrix-riot-web.conf.j2 View File

@@ -35,7 +35,7 @@ server {

ssl_certificate {{ matrix_ssl_config_dir_path }}/live/{{ hostname_riot }}/fullchain.pem;
ssl_certificate_key {{ matrix_ssl_config_dir_path }}/live/{{ hostname_riot }}/privkey.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
ssl_prefer_server_ciphers on;
ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";



+ 1
- 1
roles/matrix-server/templates/nginx-conf.d/matrix-synapse.conf.j2 View File

@@ -35,7 +35,7 @@ server {

ssl_certificate {{ matrix_ssl_config_dir_path }}/live/{{ hostname_matrix }}/fullchain.pem;
ssl_certificate_key {{ matrix_ssl_config_dir_path }}/live/{{ hostname_matrix }}/privkey.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
ssl_prefer_server_ciphers on;
ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";



Write Preview
Loading…
Cancel
Save