From d32840e40aa529b1c59bba85721b42328e76ba5f Mon Sep 17 00:00:00 2001
From: Fabien BOURGEOIS <fabien@yaltik.com>
Date: Thu, 14 Sep 2017 10:23:47 +0200
Subject: [PATCH] [IMP]Nginx TLS cache shared with more time (can lead to
 troubles in some cases...)

---
 nginx/root.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nginx/root.conf b/nginx/root.conf
index 4e7b846..26ec25c 100644
--- a/nginx/root.conf
+++ b/nginx/root.conf
@@ -8,7 +8,7 @@ server {
     ssl_ciphers EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA512:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:ECDH+AESGCM:ECDH+AES256:DH+AESGCM:DH+AES256:RSA+AESGCM:!aNULL:!eNULL:!LOW:!RC4:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS; # Logjam and co
     ssl_prefer_server_ciphers on; # Logjam
     ssl_dhparam /etc/nginx/certs/dhparams.pem; # Logjam
-    ssl_session_cache shared:TLS:2m;
+    ssl_session_cache shared:TLS:10m;
     # OCSP stapling
     ssl_stapling on;
     ssl_stapling_verify on;