public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

nixos/httpd: disable TLSv1 by default for better security

Browse Source
This commit is contained in:
Aaron Andersen 2019-02-07 14:05:44 -05:00
parent 70765af1a6
commit dd610ce84f
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
nixos/modules/services/web-servers/apache-httpd/default.nix
View File

@ -639,8 +639,8 @@ in
sslProtocols = mkOption { sslProtocols = mkOption {
type = types.str; type = types.str;
default = "All -SSLv2 -SSLv3"; default = "All -SSLv2 -SSLv3 -TLSv1";
example = "All -SSLv2 -SSLv3 -TLSv1"; example = "All -SSLv2 -SSLv3";
description = "Allowed SSL/TLS protocol versions."; description = "Allowed SSL/TLS protocol versions.";
}; };
} }