--- /dev/null
+# This file contains important security parameters. If you modify this file
+# manually, Certbot will be unable to automatically provide future security
+# updates. Instead, Certbot will print and log an error message with a path to
+# the up-to-date file that you will need to refer to when manually updating
+# this file. Contents are based on https://ssl-config.mozilla.org
+
+ssl_session_cache shared:le_nginx_SSL:10m;
+ssl_session_timeout 1440m;
+ssl_session_tickets off;
+
+ssl_protocols TLSv1.2 TLSv1.3;
+ssl_prefer_server_ciphers on;
+
+#ssl_ciphers"ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA";
+ssl_ciphers "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384";
--- /dev/null
+# renew_before_expiry = 30 days
+version = 5.1.0
+archive_dir = /etc/letsencrypt/archive/nutra.tk
+cert = /etc/letsencrypt/live/nutra.tk/cert.pem
+privkey = /etc/letsencrypt/live/nutra.tk/privkey.pem
+chain = /etc/letsencrypt/live/nutra.tk/chain.pem
+fullchain = /etc/letsencrypt/live/nutra.tk/fullchain.pem
+
+# Options used in the renewal process
+[renewalparams]
+account = 4ef7f79d3251f720306e0cd6ca6e3196
+key_type = rsa
+preferred_chain = ISRG Root X1
+authenticator = nginx
+installer = nginx
+server = https://acme-v02.api.letsencrypt.org/directory
+[acme_renewal_info]
+ari_retry_after = 2025-12-27T18:01:29
projects / nutratech / vps-root.git / commitdiff