Remove SSL block from haproxy config
This commit is contained in:
parent
03b3bd5ddb
commit
ac5a9aa0f0
GPG key ID:
57AFB45680EDD477
1 changed files with 3 additions and 15 deletions
|
|
@ -9,18 +9,6 @@ global
|
||||||
daemon
|
daemon
|
||||||
maxconn 10000
|
maxconn 10000
|
||||||
|
|
||||||
# Default SSL material locations
|
|
||||||
ca-base /etc/ssl/certs
|
|
||||||
crt-base /etc/ssl/private
|
|
||||||
|
|
||||||
# Default ciphers to use on SSL-enabled listening sockets.
|
|
||||||
# For more information, see ciphers(1SSL). This list is from:
|
|
||||||
# https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/
|
|
||||||
# An alternative list with additional directives can be obtained from
|
|
||||||
# https://mozilla.github.io/server-side-tls/ssl-config-generator/?server=haproxy
|
|
||||||
ssl-default-bind-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:!aNULL:!MD5:!DSS
|
|
||||||
ssl-default-bind-options no-sslv3
|
|
||||||
|
|
||||||
defaults
|
defaults
|
||||||
log global
|
log global
|
||||||
mode http
|
mode http
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue