ホーム エクスプローラ ヘルプ
サインイン
laurent
/
ansible-certbot
1
0
フォーク 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: b1b3500eff
ブランチ タグ
ansible-cert...
/
roles
/
disable-apache
/
templates
/
renewal-ssl

renewal-ssl 905 B
履歴 Raw

1234567891011121314151617181920212223 
  1. <VirtualHost *:443>
    2. 

  2. 

  3. 				<IfModule mod_headers.c>
    4. 

  4. 								Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains; preload"
    5. 

  5. 								Header always set X-Frame-Options DENY
    6. 

  6. 								Header always set X-Content-Type-Options nosniff
    7. 

  7. 				</IfModule>
    8. 

  8. 

  9. 				DocumentRoot /var/www/renewal
    10. 

  10. 				ServerName www.hory.me
    11. 

  11. 

  12. 				SSLEngine on
    13. 

  13. 				SSLProtocol All -SSLv2 -SSLv3 -TLSv1
    14. 

  14. 				SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA
    15. 

  15. 				SSLHonorCipherOrder On
    16. 

  16. 				SSLCompression off
    17. 

  17. 

  18. 				SSLCertificateFile /etc/letsencrypt/live/www.hory.me/fullchain.pem
    19. 

  19. 				SSLCertificateKeyFile /etc/letsencrypt/live/www.hory.me/privkey.pem
    20. 

  20. 				SSLCertificateChainFile /etc/letsencrypt/live/www.hory.me/chain.pem
    21. 

  21. 				SSLCACertificateFile /etc/letsencrypt/live/www.hory.me/cert.pem
    22. 

  22. 

  23. </VirtualHost>
    24.