telekom-security/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-07-02 01:27:27 -04:00
Code Issues Packages Projects Releases Wiki Activity

pin nginx to tls v1.3

Browse Source
This commit is contained in:
t3chn0m4g3
2019-02-26 07:55:42 +00:00
parent 2b8a82d0f5
commit 00f068980e
3 changed files with 3 additions and 50 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
docker/nginx/dist/conf/nginx.conf vendored
View File

@ -31,7 +31,8 @@ http {
# SSL Settings
##
ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
#ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
ssl_protocols TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;
##
@ -73,25 +74,3 @@ http {
include /etc/nginx/conf.d/*.conf;
include /etc/nginx/sites-enabled/*;
}
#mail {
# # See sample authentication script at:
# # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
#
# # auth_http localhost/auth.php;
# # pop3_capabilities "TOP" "USER";
# # imap_capabilities "IMAP4rev1" "UIDPLUS";
#
# server {
# listen localhost:110;
# protocol pop3;
# proxy on;
# }
#
# server {
# listen localhost:143;
# protocol imap;
# proxy on;
# }
#}

2
docker/nginx/dist/conf/tpotweb.conf vendored
View File

@ -9,7 +9,7 @@ server {
#########################
listen 64297 ssl http2;
index tpotweb.html;
ssl_protocols TLSv1.2;
ssl_protocols TLSv1.3;
server_name example.com;
error_page 300 301 302 400 401 402 403 404 500 501 502 503 504 /error.html;