Commit `86041a1`

mo khan <mo@mokhan.ca>

2015-06-28 04:08:34

add config for ssl stapling

master

1 parent c412d9d

Changed files (1)

templates

default

nginx_unix.erb

@@ -17,10 +17,15 @@ server {
   ssl on;
   ssl_certificate             /etc/nginx/ssl/<%= @domain %>.crt;
   ssl_certificate_key         /etc/nginx/ssl/<%= @domain %>.key;
+
   ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
   ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH';
   ssl_prefer_server_ciphers on;
   ssl_session_cache shared:SSL:10m;
+  #ssl_stapling on;
+  #ssl_stapling_verify on;
+  #resolver 8.8.8.8 8.8.4.4 valid=300s;
+  #resolver_timeout 5s;
 
   error_log /var/log/nginx/<%= @domain %>.error.log;
   access_log /var/log/nginx/<%= @domain %>.access.log;

Commit 86041a1

Commit `86041a1`