Skip to content

Instantly share code, notes, and snippets.

@VirtuBox

VirtuBox/ssl.conf

Last active May 20, 2022 09:48
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save VirtuBox/7d432c3c3d134cc3cb7e98b30a76c287 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save VirtuBox/7d432c3c3d134cc3cb7e98b30a76c287 to your computer and use it in GitHub Desktop.
Download ZIP

Revisions

  1. VirtuBox renamed this gist Oct 19, 2018. 1 changed file with 0 additions and 0 deletions.
    0 old-ssl.conf → universal-ssl.conf
    View file
    File renamed without changes.
  2. VirtuBox renamed this gist Oct 19, 2018. 1 changed file with 0 additions and 0 deletions.
    0 ssl-intermediate.conf → old-ssl.conf
    View file
    File renamed without changes.
  3. VirtuBox revised this gist Oct 19, 2018. 2 changed files with 11 additions and 2 deletions.
    10 changes: 10 additions & 0 deletions ssl-intermediate.conf
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,10 @@
    ##
    # SSL Settings (TLSv1.0 + TLSv1.1 + TLSv1.2 + TLSv1.3)
    ##
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
    ssl_ciphers 'TLS13+AESGCM+AES128:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS';
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:50m;
    ssl_session_timeout 1d;
    ssl_session_tickets off;
    ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1;
    3 changes: 1 addition & 2 deletions ssl.conf
    View file
    Original file line number Diff line number Diff line change
    @@ -1,5 +1,5 @@
    ##
    # SSL Settings
    # SSL Settings (TLSv1.2 and TLSv1.3)
    ##
    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_ciphers 'TLS13+AESGCM+AES128:EECDH+AES128';
    @@ -8,5 +8,4 @@
    ssl_session_timeout 1d;
    ssl_session_tickets off;
    ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1


  4. VirtuBox revised this gist Oct 19, 2018. 1 changed file with 10 additions and 11 deletions.
    21 changes: 10 additions & 11 deletions ssl.conf
    View file
    Original file line number Diff line number Diff line change
    @@ -1,13 +1,12 @@
    ##
    # SSL Settings
    ##

    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_ciphers 'TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-AES-128-GCM-SHA256:EECDH+CHACHA20:EECDH+AESGCM';
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:20m;
    ssl_session_timeout 15m;
    ssl_session_tickets off;
    ssl_ecdh_curve X25519:P-256:P-384:P-521;
    ##
    # SSL Settings
    ##
    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_ciphers 'TLS13+AESGCM+AES128:EECDH+AES128';
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:50m;
    ssl_session_timeout 1d;
    ssl_session_tickets off;
    ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1


  5. VirtuBox revised this gist Dec 14, 2017. 1 changed file with 2 additions and 2 deletions.
    4 changes: 2 additions & 2 deletions ssl.conf
    View file
    Original file line number Diff line number Diff line change
    @@ -3,11 +3,11 @@
    ##

    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_ciphers 'TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-AES-128-GCM-SHA256:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-CHACHA20-POLY1305-D:ECDHE-RSA-CHACHA20-POLY1305-D:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384';
    ssl_ciphers 'TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-AES-128-GCM-SHA256:EECDH+CHACHA20:EECDH+AESGCM';
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:20m;
    ssl_session_timeout 15m;
    ssl_session_tickets off;
    ssl_ecdh_curve X25519:P-521:P-384;
    ssl_ecdh_curve X25519:P-256:P-384:P-521;


  6. VirtuBox revised this gist Dec 14, 2017. 1 changed file with 3 additions and 1 deletion.
    4 changes: 3 additions & 1 deletion ssl.conf
    View file
    Original file line number Diff line number Diff line change
    @@ -8,4 +8,6 @@
    ssl_session_cache shared:SSL:20m;
    ssl_session_timeout 15m;
    ssl_session_tickets off;
    ssl_ecdh_curve X25519:P-521:P-384;
    ssl_ecdh_curve X25519:P-521:P-384;


  7. VirtuBox created this gist Dec 14, 2017.
    11 changes: 11 additions & 0 deletions ssl.conf
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,11 @@
    ##
    # SSL Settings
    ##

    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_ciphers 'TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-AES-128-GCM-SHA256:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-CHACHA20-POLY1305-D:ECDHE-RSA-CHACHA20-POLY1305-D:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384';
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:20m;
    ssl_session_timeout 15m;
    ssl_session_tickets off;
    ssl_ecdh_curve X25519:P-521:P-384;