evgeny/modoboa-installer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
434 Commits 10 Branches 0 Tags
6e3a232e8350d824f1f31c7936f4d483f3a2ac33
Commit Graph

12 Commits

Author SHA1 Message Date
Spitap
6e3a232e83 Added http2 for nginx 2023-05-25 11:16:32 +02:00
Karim
85dc113fe4 Replaceing old TLS versions and insecure ciphers 
NEVER use SSL / TLS in outdated versions or insecure / oudated ciphers. Current state-of-the-art TLS Versions are TLSv1.2 and TLSv1.3. TLSv1.2 is only enabled for backwards compatibility. Ciphers are taken out of the guide. 

```ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;```

Are the recommended ciphers out of  source 4 in combination of all other sources.
 
source 1: https://www.linuxtechi.com/harden-secure-nginx-web-server-linux
source 2: https://beaglesecurity.com/blog/article/nginx-server-security.html
source 3: https://www.acunetix.com/blog/articles/tls-ssl-cipher-hardening/
source 4: https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html
 2022-05-18 01:22:45 +02:00
Antoine Nguyen
58f5a8af09 Fixed issue with Debian bullseye (11). 2021-09-22 11:32:55 +02:00
stefaweb
6422e7cdc7 Revert back mods 2018-07-02 11:10:04 +02:00
stefaweb
6e876be34b autodiscover config mods 
Add https to
 2018-07-01 09:00:25 +02:00
Antoine Nguyen
15c970cea0 Merge branch 'master' into master 2018-06-09 09:44:26 +02:00
François Schmidts
d20cc8b847 making vhost listen to ipv6 also 2018-06-06 14:51:12 +02:00
Antoine Nguyen
c32c0ea2ae Added autodiscover config. 
fix #150
 2017-08-09 15:18:47 +02:00
Antoine Nguyen
5f36d6231f Added automx support. 
see #98
 2017-02-09 14:40:39 +01:00
Antoine Nguyen
f2eb1bc007 Use safer nginx configuration. 
fix #64
 2017-01-17 15:36:40 +01:00
Antoine Nguyen
84ad8e80b9 Better (more secure) config. 
see #75
 2016-12-07 16:57:12 +01:00
Antoine Nguyen
84fe9b0d16 Initial commit. 2015-10-14 17:27:01 +02:00