Inferencium/cfg
1
0
Fork 0
Code Issues Activity

feat(nginx): enable secp256r1 ECDH curve

Browse Source 
secp256r1 is mandated by IETF RFC8446 section 9.1; use it as a fallback
for X5519, despite it likely never being used.
This commit is contained in:
inference 2025-06-29 01:48:30 +00:00
parent 198ab835fb
commit ebfa37be7b
Signed by: inference
SSH Key Fingerprint: SHA256:/O3c09/4f1lh4zrhFs2qvQEDda6dZbTwG9xEcj8OfWo
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
xb-00-01/nginx/website.conf
View File

@ -1,6 +1,6 @@
# Inferencium - xb-00-01 # Inferencium - xb-00-01
# Nginx - Configuration - Website # Nginx - Configuration - Website
# Version: 10.0.0-alpha.9 # Version: 10.0.0-alpha.10
# Copyright 2022 Jake Winters # Copyright 2022 Jake Winters
# SPDX-License-Identifier: BSD-3-Clause # SPDX-License-Identifier: BSD-3-Clause
@ -50,7 +50,7 @@ server {
ssl_conf_command Ciphersuites "TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256"; ssl_conf_command Ciphersuites "TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256";
ssl_conf_command Options PrioritizeChaCha; ssl_conf_command Options PrioritizeChaCha;
ssl_prefer_server_ciphers on; ssl_prefer_server_ciphers on;
ssl_ecdh_curve X25519; ssl_ecdh_curve X25519:secp256r1;
ssl_stapling on; ssl_stapling on;
ssl_stapling_verify on; ssl_stapling_verify on;
ssl_session_timeout 1d; ssl_session_timeout 1d;