diff options
author | Christian Pointner <equinox@spreadspace.org> | 2019-11-08 23:28:20 +0100 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2019-11-08 23:28:20 +0100 |
commit | 965497e2653fcf39f2082cc23d12b764c5c0dca1 (patch) | |
tree | 86c5977dcbeaee2a10dc76da4603eb283e460ecf /roles/nginx/base/defaults | |
parent | minor formatting fix (diff) |
nginx: do some tls hardening
Diffstat (limited to 'roles/nginx/base/defaults')
-rw-r--r-- | roles/nginx/base/defaults/main.yml | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/roles/nginx/base/defaults/main.yml b/roles/nginx/base/defaults/main.yml index f460fa91..2cd84e5a 100644 --- a/roles/nginx/base/defaults/main.yml +++ b/roles/nginx/base/defaults/main.yml @@ -5,7 +5,10 @@ nginx_conf_d_files: - connection-upgrade nginx_snippets: - - ssl + - tls + - tls-legacy - hsts - proxy-nobuff - proxy-forward-headers + +nginx_dhparam_size: 2048 |