Commit 918a3a0a authored by ulif's avatar ulif 🐻

Restrict outdated TLS versions in nginx config.

parent 09f65c83
......@@ -12,7 +12,7 @@
debug:
msg: Hello world, from {{ ansible_fqdn }}.
- name: Fix nginx bigbluebutton config
- name: nginx config - make port 80 redirect to 443
blockinfile:
path: /etc/nginx/sites-available/bigbluebutton
insertafter: server_name
......@@ -25,3 +25,10 @@
server {
server_name {{ ansible_fqdn }};
backup: yes
- name: nginx config - allow TLS 1.2 only
lineinfile:
path: /etc/nginx/sites-available/bigbluebutton
regexp: '^(.*)ssl_protocols .*;'
line: '\1ssl_protocols TLSv1.2;'
backrefs: yes
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment