Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

setup copr-be to use https

Browse source 
selfigned certs, not stored here.
It will be replaced in matter of days by properly signed certs, which we store in private repo
This commit is contained in:
Miroslav Suchý 2014-01-15 13:29:09 +00:00
parent c381898d11
commit b1dfce5353
1 changed files with 9 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

10
files/copr/lighttpd/lighttpd.conf
View file

@ -90,7 +90,7 @@ server.port = 80
## ##
## Use IPv6? ## Use IPv6?
## ##
server.use-ipv6 = "enable" server.use-ipv6 = "disable"
## ##
## bind to a specific IP ## bind to a specific IP
@ -445,3 +445,11 @@ server.upload-dirs = ( "/var/tmp" )
#include_shell "cat /etc/lighttpd/vhosts.d/*.conf" #include_shell "cat /etc/lighttpd/vhosts.d/*.conf"
## ##
####################################################################### #######################################################################
$SERVER["socket"] == ":443" {
ssl.engine = "enable"
ssl.pemfile = "/etc/lighttpd/copr-be.pem"
ssl.ca-file = "/etc/lighttpd/copr-be.crt"
ssl.disable-client-renegotiation = "enable"
ssl.cipher-list = "ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM"
}