From e60c082e781e58861aa7a4a5db33e76f5ba208fa Mon Sep 17 00:00:00 2001
From: staticsafe <me@staticsafe.ca>
Date: Mon, 8 May 2017 23:58:09 -0400
Subject: [PATCH] Add SSL session settings to nginx config.

---
 ubuntu/site.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/ubuntu/site.yml b/ubuntu/site.yml
index 145a908..5d2f8e7 100644
--- a/ubuntu/site.yml
+++ b/ubuntu/site.yml
@@ -226,3 +226,6 @@
         - ssl_prefer_server_ciphers on
         - ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256'
         - ssl_dhparam "/etc/nginx/dhparams.pem"
+        - ssl_session_timeout 1d
+        - ssl_session_cache shared:SSL:50m
+        - ssl_session_tickets off