Spitap
|
4082d5790d
|
Added Rspamd installation
|
2025-08-19 15:27:22 +02:00 |
|
Antoine Nguyen
|
53669b48de
|
Compat with Modoboa 2.4.0
|
2025-07-03 10:43:07 +02:00 |
|
Spitap
|
6e3a232e83
|
Added http2 for nginx
|
2023-05-25 11:16:32 +02:00 |
|
Karim
|
85dc113fe4
|
Replaceing old TLS versions and insecure ciphers
NEVER use SSL / TLS in outdated versions or insecure / oudated ciphers. Current state-of-the-art TLS Versions are TLSv1.2 and TLSv1.3. TLSv1.2 is only enabled for backwards compatibility. Ciphers are taken out of the guide.
```ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;```
Are the recommended ciphers out of source 4 in combination of all other sources.
source 1: https://www.linuxtechi.com/harden-secure-nginx-web-server-linux
source 2: https://beaglesecurity.com/blog/article/nginx-server-security.html
source 3: https://www.acunetix.com/blog/articles/tls-ssl-cipher-hardening/
source 4: https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html
|
2022-05-18 01:22:45 +02:00 |
|
Antoine Nguyen
|
58f5a8af09
|
Fixed issue with Debian bullseye (11).
|
2021-09-22 11:32:55 +02:00 |
|
Antoine Nguyen
|
15c970cea0
|
Merge branch 'master' into master
|
2018-06-09 09:44:26 +02:00 |
|
François Schmidts
|
d20cc8b847
|
making vhost listen to ipv6 also
|
2018-06-06 14:51:12 +02:00 |
|
Antoine Nguyen
|
c32c0ea2ae
|
Added autodiscover config.
fix #150
|
2017-08-09 15:18:47 +02:00 |
|
Antoine Nguyen
|
5f36d6231f
|
Added automx support.
see #98
|
2017-02-09 14:40:39 +01:00 |
|