From d61ba8e651aba6f4e31ed1a46e70b4cf4119d5da Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Thomas=20S=C3=A4nger?= <thomas@gecko.space>
Date: Wed, 15 Nov 2017 12:34:00 +0100
Subject: [PATCH] disable ssl_session_tickets

---
 core/nginx/conf/tls.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/core/nginx/conf/tls.conf b/core/nginx/conf/tls.conf
index 200c5e96..fbc11dad 100644
--- a/core/nginx/conf/tls.conf
+++ b/core/nginx/conf/tls.conf
@@ -2,6 +2,7 @@ ssl_protocols TLSv1.1 TLSv1.2;
 ssl_ciphers 'ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384';
 ssl_prefer_server_ciphers on;
 ssl_session_timeout 10m;
+ssl_session_tickets off;
 ssl_certificate {{ TLS[0] }};
 ssl_certificate_key {{ TLS[1] }};
 ssl_dhparam /certs/dhparam.pem;