From 454acd11ef9b4a6cfa6c3e767337f21a2dd8f43f Mon Sep 17 00:00:00 2001
From: Alexandre <44178713+alexbelgium@users.noreply.github.com>
Date: Fri, 9 Apr 2021 21:58:22 +0200
Subject: [PATCH] Create ssl_params.conf

---
 joal/rootfs/etc/includes/ssl_params.conf | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 joal/rootfs/etc/includes/ssl_params.conf

diff --git a/joal/rootfs/etc/includes/ssl_params.conf b/joal/rootfs/etc/includes/ssl_params.conf
new file mode 100644
index 000000000..6f1500599
--- /dev/null
+++ b/joal/rootfs/etc/includes/ssl_params.conf
@@ -0,0 +1,9 @@
+ssl_protocols TLSv1.2;
+ssl_prefer_server_ciphers on;
+ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA;
+ssl_ecdh_curve secp384r1;
+ssl_session_timeout  10m;
+ssl_session_cache shared:SSL:10m;
+ssl_session_tickets off;
+ssl_stapling on;
+ssl_stapling_verify on;