From 93c614bf136752a212a242fef6066bc30ce4b6ad Mon Sep 17 00:00:00 2001
From: Artik Banana <lid@tuta.io>
Date: Mon, 11 Jun 2018 23:01:14 +0000
Subject: [PATCH] * Removed TLSv1 and TLSv1.1 * Added OCSP Stapling * Added SSL
 Cache * Changed ciphers * Specified ECDH curves

---
 installation/pleroma.nginx | 1 +
 1 file changed, 1 insertion(+)

diff --git a/installation/pleroma.nginx b/installation/pleroma.nginx
index 3cbb675b3..a0a2d9f51 100644
--- a/installation/pleroma.nginx
+++ b/installation/pleroma.nginx
@@ -36,6 +36,7 @@ server {
     ssl_certificate           /etc/letsencrypt/live/example.tld/fullchain.pem;
     ssl_certificate_key       /etc/letsencrypt/live/example.tld/privkey.pem;
 
+    # Add TLSv1.0 to support older devices
     ssl_protocols TLSv1.2;
     # Uncomment line below if you want to support older devices (Before Android 4.4.2, IE 8, etc.)
     # ssl_ciphers "HIGH:!aNULL:!MD5 or HIGH:!aNULL:!MD5:!3DES";