removed SSLv3

author: Horus3 2014-09-16 12:27:37 +0200
committer: Horus3 2014-09-16 12:27:37 +0200
commit: c547d90d3ea3ab2383d95e8e18ab7a391d1c150a (patch)
tree: 6788356b5bf0e384bbaedc3bfc0ead0d5109aaad
parent: 81827c5a2796cd092e781953fe276c8b44a94a9f (diff)
download: nginx_conf-c547d90d3ea3ab2383d95e8e18ab7a391d1c150a.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/ssl_conf b/ssl_conf
index f997aa5..57a936a 100644
--- a/ssl_conf
+++ b/ssl_conf
@@ -1,5 +1,7 @@
 ssl_prefer_server_ciphers On;
-ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
+# SSLv3 is deprecated
+#ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
+ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
 ssl_ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS;
 add_header Strict-Transport-Security max-age=15768000;
 ssl_session_cache shared:SSL:50m;
author	Horus3	2014-09-16 12:27:37 +0200
committer	Horus3	2014-09-16 12:27:37 +0200
commit	c547d90d3ea3ab2383d95e8e18ab7a391d1c150a (patch)
tree	6788356b5bf0e384bbaedc3bfc0ead0d5109aaad
parent	81827c5a2796cd092e781953fe276c8b44a94a9f (diff)
download	nginx_conf-c547d90d3ea3ab2383d95e8e18ab7a391d1c150a.tar.gz