From 5adbf490664d5588048e64316ebb440900e3a8b1 Mon Sep 17 00:00:00 2001 From: Daniel Micay Date: Wed, 24 Apr 2024 19:55:39 -0400 Subject: [PATCH] replace deprecated http2 listen parameter --- nginx/nginx.conf | 16 +++++++++------- 1 file changed, 9 insertions(+), 7 deletions(-) diff --git a/nginx/nginx.conf b/nginx/nginx.conf index ad16e82..a813c3a 100644 --- a/nginx/nginx.conf +++ b/nginx/nginx.conf @@ -1,4 +1,4 @@ -# nginx 1.24.x +# nginx 1.26.x error_log syslog:server=unix:/dev/log,nohostname; # leave stderr open but minimize duplicate logging to it @@ -12,6 +12,8 @@ events { } http { + http2 on; + root /var/empty; include mime.types; @@ -109,8 +111,8 @@ http { } server { - listen 443 default_server ssl http2 backlog=4096; - listen [::]:443 default_server ssl http2 backlog=4096; + listen 443 default_server ssl backlog=4096; + listen [::]:443 default_server ssl backlog=4096; ssl_reject_handshake on; # https://trac.nginx.org/nginx/ticket/2012 @@ -120,8 +122,8 @@ http { } server { - listen 443 ssl http2; - listen [::]:443 ssl http2; + listen 443 ssl; + listen [::]:443 ssl; server_name mail.grapheneos.org mail.grapheneos.net; add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always; @@ -136,8 +138,8 @@ http { } server { - listen 443 ssl http2; - listen [::]:443 ssl http2; + listen 443 ssl; + listen [::]:443 ssl; server_name mta-sts.mail.grapheneos.org mta-sts.attestation.app mta-sts.discuss.grapheneos.org mta-sts.grapheneos.app mta-sts.grapheneos.ca mta-sts.grapheneos.com mta-sts.grapheneos.dev mta-sts.grapheneos.foundation mta-sts.grapheneos.info mta-sts.grapheneos.net mta-sts.grapheneos.network mta-sts.grapheneos.online mta-sts.grapheneos.org mta-sts.grapheneos.ovh mta-sts.grapheneos.page mta-sts.grapheneos.social mta-sts.matrix.grapheneos.org mta-sts.seamlessupdate.app mta-sts.vanadium.app; add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always;