Alan Orth
2d98d70e02
Use latest Mozilla "intermediate" TLS settings. This configuration works on (at least) Ubuntu 18.04 and Debian 10. See: https://ssl-config.mozilla.org/#server=nginx&server-version=1.17.2&config=intermediate&openssl-version=1.1.1
7 lines
297 B
Plaintext
7 lines
297 B
Plaintext
---
|
|
# file: group_vars/all
|
|
|
|
tls_cipher_suite: "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"
|
|
|
|
# vim: set ts=2 sw=2:
|