From 7f8b185e48f9466f7b5728bc7d6415f25b702963 Mon Sep 17 00:00:00 2001 From: Jocelyn Le Sage Date: Mon, 26 Nov 2018 06:38:24 -0500 Subject: [PATCH] Revert "Use default ciphers for default ssl host to prevent confusing browser errors" This reverts commit f9876326c96b11f6578b96a5fff2a9cf94cddf22. This is to make sure the browser doesn't show a certificate warning (for a connection that will be dropped anyway) by breaking the SSL handshake early. --- rootfs/etc/nginx/conf.d/default.conf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/rootfs/etc/nginx/conf.d/default.conf b/rootfs/etc/nginx/conf.d/default.conf index 43ca4f15..f24cbaf7 100644 --- a/rootfs/etc/nginx/conf.d/default.conf +++ b/rootfs/etc/nginx/conf.d/default.conf @@ -46,7 +46,7 @@ server { ssl_certificate /data/nginx/dummycert.pem; ssl_certificate_key /data/nginx/dummykey.pem; - include conf.d/include/ssl-ciphers.conf; + ssl_ciphers aNULL; return 444; }