SSL网站证书配置
0.00
★8次@未来之窗
A:赛忞初雪
server
{
listen 80;
listen 443 ssl http2;
server_name 东方仙盟.net;
#CERT-APPLY-CHECK--START
# 用于SSL证书申请时的文件验证相关配置 -- 请勿删除
# include /www/server/panel/vhost/nginx/well-known/github.ynwlzc.net.conf;
#SSL-START SSL相关配置,请勿删除或修改下一行带注释的404规则
#error_page 404/404.html;
ssl_certificate //fullchain.pem;
ssl_certificate_key /privkey.pem;
#2024-6-25 作废 ssl_protocols TLSv1.1 TLSv1.2;
ssl_protocols TLSv1.1 TLSv1.2;
ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
ssl_prefer_server_ciphers on;
#ssl_session_cache shared:SSL:10m;
ssl_session_cache shared:SSL:50m;
#ssl_session_timeout 10m;
#ssl_session_timeout 4h;
#ssl_session_timeout 130m;
ssl_session_timeout 4h;
ssl_stapling on;
ssl_stapling_verify on;
#CERT-APPLY-CHECK--END
#SSL-START SSL相关配置,请勿删除或修改下一行带注释的404规则
#error_page 404/404.html;
#SSL-END
}
硬件app
