r3-config/nginx/ssl/ssl.conf

	ssl_certificate ssl/cybafelo.local.crt;
	ssl_certificate_key ssl/cybafelo.local.key;
	ssl_session_timeout 5m;
    ## Don't use SSL v3 because of POODLE vulnerability
    #	ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
	ssl_ciphers "HIGH:!aNULL:!MD5 or HIGH:!aNULL:!MD5:!3DES";
	ssl_prefer_server_ciphers on;
stuff 2018-04-04 12:30:30 +02:00			`ssl_certificate ssl/cybafelo.local.crt;`
			`ssl_certificate_key ssl/cybafelo.local.key;`
			`ssl_session_timeout 5m;`
			`## Don't use SSL v3 because of POODLE vulnerability`
			`# ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;`
			`ssl_protocols TLSv1 TLSv1.1 TLSv1.2;`
			`ssl_ciphers "HIGH:!aNULL:!MD5 or HIGH:!aNULL:!MD5:!3DES";`
			`ssl_prefer_server_ciphers on;`