pci compliant nginx ssl

Something to ensure website’s SSL is PCI compliant using nginx.

 server {
 ..
 ssl on;
 ssl_certificate domain.chained.crt;
 ssl_certificate_key domain.key;
 ssl_session_timeout 5m;
 ssl_protocols SSLv3 TLSv1;
 ssl_ciphers RC4:HIGH:!aNULL:!MD5:!kEDH;
 ssl_prefer_server_ciphers on;
 ..
 }
 
Advertisements

One thought on “pci compliant nginx ssl

  1. SPDY and nginx is easy. SSL is forced, so it’ll be rock solid and secure! There’s a nginx SPDY patchset available for download. Even though it’s in early beta stadium, it works just as thought to do.

    Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s