BASH: Better SSL in Nginx in 10 minutes. Configuration files and setup scripts for Certbot.
certbot-auto
to certbot
. Run apt install certbot
.
git pull bubbly
from cron.
acme-v02
API endpoint.amplify_stub-status.conf
nixstats_stub-status.conf
Expect-CT
now has a default value of 30 seconds.Strict-Transport-Security
now has a default value of 31536000 seconds (365 days).Expect-CT
now has an optional value of 31536000 seconds (365 days).Content-Security-Policy
changes have taken place, a normal overwrite upgrade will eradicate them.bubbly_generate-statics.sh
due to change in openssl rand
parameter order strictness.Content-Security-Policy
to own default file to allow easier customisation.Expect-CT
with default of enforce, max-age=30, report-uri='/api/report_ect'
Referrer-Policy
with default of strict-origin-when-cross-origin
Server
.sh
permissions.no-transform
header.github/CONTRIBUTING.md
CODE_OF_CONDUCT.md
.gitattributes
cli.ini
in favour of command options.nginx.conf
include
snginx.conf
header.