ankitpatial/dev-ops
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

tls protocol setting

Browse Source
This commit is contained in:
Ankit Patial 2024-09-30 13:12:31 +00:00
parent 0650a53200
commit 40fc62fb4e
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
caddy-example.conf
View File

@ -1,3 +1,6 @@
# ref https://ssl-config.mozilla.org/#server=caddy&version=2.1.1&config=intermediate&guideline=5.7
#
:80 {
root * /var/www/html
file_server
@ -13,6 +16,11 @@ www.example.com {
}
example.com {
tls user@email.com
tls user@email.com {
protocols tls1.2 tls1.3
ciphers TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
}
# HSTS (63072000 seconds)
header Strict-Transport-Security "max-age=63072000"
reverse_proxy localhost:8080
}