Skip to content

Instantly share code, notes, and snippets.

@wilxsv
Created September 11, 2018 17:24
Show Gist options
  • Save wilxsv/69908412b3d10adf5cb13182f5bb5494 to your computer and use it in GitHub Desktop.
Save wilxsv/69908412b3d10adf5cb13182f5bb5494 to your computer and use it in GitHub Desktop.
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers "-ALL:EECDH+AES256:EDH+AES256:AES256-SHA:EECDH+AES:EDH+AES:!ADH:!NULL:!aNULL:!eNULL:!EXPORT:!LOW:!MD5:!3DES:!PSK:!SRP:!DSS:!AESGCM:!RC4";
ssl_dhparam /etc/ssl/certs/dhparam.pem;
ssl_prefer_server_ciphers on;
keepalive_timeout 70;
ssl_stapling on;
ssl_stapling_verify on;
add_header X-Content-Type-Options nosniff;
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment