4a878fac9f
* Specify ciphers suites for better control and security It's better to specify cipher suites to avoid having too many ciphers authorized. It allow better control of which cipher suites you use. The cipher have been choosed based on https://english.ncsc.nl/publications/publications/2021/january/19/it-security-guidelines-for-transport-layer-security-2.1 Signed-off-by: samsepi0l <contact@simpleprivacy.fr> * Remove useless ciphers Signed-off-by: samsepi0l <contact@simpleprivacy.fr> * Add "ssl_prefer_server_ciphers" and prioritize ChaCha20 suites with clients that don't have AES-NI Signed-off-by: samsepi0l <contact@simpleprivacy.fr> * Update bitnami/nginx/1.25/debian-11/rootfs/opt/bitnami/nginx/conf/nginx.conf Co-authored-by: Juan José Martos <jotamartos@gmail.com> Signed-off-by: samsepi0l <contact@samsepi0l.dev> --------- Signed-off-by: samsepi0l <contact@simpleprivacy.fr> Signed-off-by: samsepi0l <contact@samsepi0l.dev> Co-authored-by: samsepi0l <contact@simpleprivacy.fr> Co-authored-by: Juan José Martos <jotamartos@gmail.com> |
||
|---|---|---|
| .. | ||
| debian-11 | ||