Files @ c2f446ec7e2a
Branch filter:

Location: majic-ansible-roles/roles/web_server/templates/tls.conf.j2

c2f446ec7e2a 162 B text/plain Show Annotation Show as Raw Download as Raw
branko
MAR-158: Update default TLS ciphers configuration in the mail_server role:

- Updated the default value for parameter mail_server_tls_ciphers.
- Updated tests, making them explicitly test for enabled and disabled
ciphers.
- Refactored tests for TLS to use nmap ssl-enum-ciphers script for
listing available TLS versions and ciphers.
- Install nmap as part of preparation step.
- Updated role reference documentation.
1
2
3
ssl_protocols {{ web_server_tls_protocols | join(" ") }};
ssl_ciphers {{ web_server_tls_ciphers }};
ssl_dhparam /etc/ssl/private/{{ ansible_fqdn }}_https.dh.pem;
This site is powered by Kallithea 0.7.0, which is © 2010–2025 by various authors & licensed under GPLv3.