From d8577e0e57a79afd48695aadc60f7873b56897bc Mon Sep 17 00:00:00 2001
From: 3wc <3wc.github@doesthisthing.work>
Date: Sun, 31 Oct 2021 16:57:01 +0200
Subject: [PATCH] Awful scary changes to Prosody SSL config

---
 ansible/files/prosody.cfg.lua | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/ansible/files/prosody.cfg.lua b/ansible/files/prosody.cfg.lua
index 315b038..be40cff 100644
--- a/ansible/files/prosody.cfg.lua
+++ b/ansible/files/prosody.cfg.lua
@@ -181,7 +181,7 @@ else
 	statistics_interval = 60
 end
 
-certificates = "certs"
+-- certificates = "certs"
 
 group_default_name = ENV_SNIKKET_SITE_NAME or DOMAIN
 
@@ -208,8 +208,12 @@ end
 VirtualHost (DOMAIN)
 	authentication = "internal_hashed"
 
-	certificate = CERT_PATH;
-	key = KEY_PATH;
+	ssl = {
+		ciphers = "EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4";
+		certificate = CERT_PATH;
+		key = KEY_PATH;
+	};
+
 
 	http_files_dir = "/var/www"
 	http_paths = {