SSL chiper parameters

I have installed lets encrypt, is my setup secure, what can I add to make it more secure?
I am using nginx, and I am on centos 7

   ssl_dhparam /etc/ssl/certs/dhparam.pem;

## SSL
ssl_session_cache shared:SSL:20m;
ssl_session_timeout 10m;

ssl_prefer_server_ciphers On;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

ssl_stapling on;
ssl_stapling_verify on;
resolver valid=300s;
resolver_timeout 10s;


Could you please elaborate on "secure"?

Please note that the more "secure" the nginx configuration is, the less client would be able to access your website.

If you want to merely rise the rating of your configuration on SSLLabs, you could refer to the below topic.

Thank you

You could start by removing the outdated protocols and ciphers:

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.