可以使用以下地址工具按需生成 nginx 配置
https://ssl-config.mozilla.org/#server=nginx
HSTS 的配置为:
# HSTS (ngx_http_headers_module is required) (63072000 seconds) add_header Strict-Transport-Security "max-age=63072000" always;
TLS 协议的配置为,允许哪些协议版本,就写哪些就可以了:
ssl_protocols TLSv1.2 TLSv1.3;
标签:TLS,1.0,1.1,HSTS,配置,nginx From: https://www.cnblogs.com/xwgli/p/16744162.html