mirror of
https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker.git
synced 2025-09-01 18:19:55 +00:00
UPDATE ssl.d/globalssl.conf [ci skip]
Recommended SSL settings for all nginx sites
This commit is contained in:
Mitchell Krog
parent
90e8578247
commit
9a35bb888c
1 changed files with 4 additions and 4 deletions
|
|
@ -54,7 +54,7 @@
|
|||
# include /etc/nginx/ssl.d/globalssl.conf;
|
||||
|
||||
|
||||
##
|
||||
##
|
||||
# DIFFIE HELMAN ENCRYPTION / DHE
|
||||
##
|
||||
|
||||
|
|
@ -128,9 +128,9 @@
|
|||
ssl_stapling on;
|
||||
ssl_stapling_verify on;
|
||||
|
||||
# Do not use resolvers for OCSP see comment in - https://scotthelme.co.uk/ocsp-stapling-speeding-up-ssl/
|
||||
# Do not use resolvers for OCSP see comment in - https://scotthelme.co.uk/ocsp-stapling-speeding-up-ssl/
|
||||
# http://disq.us/url?url=http%3A%2F%2Fblog.zorinaq.com%2Fnginx-resolver-vulns%2F%3AP2dn26U8hf5EMF__e_ZIRGBpc3E&cuid=2541595
|
||||
# resolver 8.8.8.8 8.8.4.4 valid=300s;
|
||||
# resolver_timeout 5s;
|
||||
# resolver 8.8.8.8 8.8.4.4 valid=300s;
|
||||
# resolver_timeout 5s;
|
||||
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue