pci compliant nginx ssl

Something to ensure website’s SSL is PCI compliant using nginx.

 server {
 ..
 ssl on;
 ssl_certificate domain.chained.crt;
 ssl_certificate_key domain.key;
 ssl_session_timeout 5m;
 ssl_protocols SSLv3 TLSv1;
 ssl_ciphers RC4:HIGH:!aNULL:!MD5:!kEDH;
 ssl_prefer_server_ciphers on;
 ..
 }

1 Comment

  1. nginx spdy says:
    July 21, 2012 at 12:27 am

    SPDY and nginx is easy. SSL is forced, so it’ll be rock solid and secure! There’s a nginx SPDY patchset available for download. Even though it’s in early beta stadium, it works just as thought to do.

    Like

    Reply

Leave a Comment

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.