Category: Plesk
Configuring SSL Protocols and Cipher Suites on nginx with Plesk
This is necessary to avoid security warnings on most browsers released after March 2015
The main configuration file is usually /etc/nginx/plesk.conf.d/server.conf
However, there will be cases when this will need to be applied on individual virtual hosts. Each virtual host will have a configuration file (/etc/nginx/plesk.conf.d/vhosts/XXDOMAINXX.conf)
The relevant configuration files will need to contain the following lines:
ssl_protocols TLSv1.2 TLS1.1 TLSv1; ssl_ciphers HIGH:ADH:MD5:aNULL:eNULL:MEDIUM:LOW:EXP:kEDH; ssl_prefer_server_ciphers on;