#server { # listen 443 ssl; # server_name localhost; # ssl_certificate cert.pem; # ssl_certificate_key cert.key; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 5m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; # location / { # root html; # index ...
# ssl 会话超时时间 ssl_session_timeout 1d; # ssl 缓存 ssl_session_cache shared:SSL:50m; # ssl 会话票据 ssl_session_tickets off; # ssl 协议版本 ssl_protocols TLSv1.2; # ssl 密码套件 ssl_ciphers 'HIGH:!aNULL:!MD5'; # 开启 ssl 服务密码套件 ssl_prefer_server_ciphers on; } 1. 2. ...
1 listen 443; 监听443端口 2 ssl on; 开启SSL模块 3 ssl_protocols SSLv2 SSLv3 TLSv1; 指定SSL使用协议 4 ssl_ciphers HIGH:!aNULL:!MD5; 指定加密方式 5 ssl_prefer_server_ciphers on; 配置依赖SSLv3和TLSv1协议的服务器密码将优先于客户端密码 6 ssl_session_timeout 10m; 设置会话超时时间 7 ss...
1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5"; ssl_session_cache builtin:1000 shared:SSL:10m; # openssl dhparam -out /usr/local/nginx/conf/ssl/dhparam.pem 2048 ...
#ssl_session_timeout 5m;#ssl_protocols TLSv1 TLSv1.1TLSv1.2;#ssl_ciphersECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;#ssl_prefer_server_ciphers ##301重定向http=>https #if(!="https"){#return301https://;#}### extra ### include/etc/nginx/conf.d/extra/*.conf; } [...
~ "(^dl.simaek.com$)") {return404; }include/usr/syno/etc/www/certificate/WebStation_vhost_d29555d8-e3ba-44ff-b82c-dfc1807fef13/cert.conf*;include/usr/syno/etc/security-profile/tls-profile/config/vhost_d29555d8-e3ba-44ff-b82c-dfc1807fef13.conf*;ssl_prefer_server_cipherson;...
103 # ssl_certificate_key cert.key; 104 105 # ssl_session_cache shared:SSL:1m; 106 # ssl_session_timeout 5m; 107 108 # ssl_ciphers HIGH:!aNULL:!MD5; 109 # ssl_prefer_server_ciphers on; 110 111 # location / { 112 # root html; ...
span>pem; # ssl_certificate_key cert.key; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 5m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; # location / { # root html; # index index.html index
# listen 443 ssl; # server_name localhost; # ssl_certificate cert.pem; # ssl_certificate_key cert.key; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 5m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; ...
ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on; location / { root html; index index.html index.htm; } } } 查看web浏览器启动状态 七、php和nginx分离的方法 1、将nginx监听的地址改成远程php服务器地址 这里注意一点root指定的目录并不是nginx服务器上的目录,而是PHP服务器上的目录,这里...