From 1bb65cfdf8ac09c1dc2dda9a314e1bed4e0c9396 Mon Sep 17 00:00:00 2001
From: frju365 <win10@tutanota.com>
Date: Sat, 28 Apr 2018 21:34:23 +0200
Subject: [PATCH] [enh] add X25519 curve

---
 data/templates/nginx/plain/yunohost_admin.conf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/data/templates/nginx/plain/yunohost_admin.conf b/data/templates/nginx/plain/yunohost_admin.conf
index e6f7d16f7..76525aab6 100644
--- a/data/templates/nginx/plain/yunohost_admin.conf
+++ b/data/templates/nginx/plain/yunohost_admin.conf
@@ -19,8 +19,8 @@ server {
     ssl_certificate_key /etc/yunohost/certs/yunohost.org/key.pem;
     ssl_session_timeout 5m;
     ssl_session_cache shared:SSL:50m;
-    # As suggested by Mozilla : https://wiki.mozilla.org/Security/Server_Side_TLS
-    ssl_ecdh_curve secp521r1:secp384r1:prime256v1;
+    # As suggested by Mozilla : https://wiki.mozilla.org/Security/Server_Side_TLS and https://en.wikipedia.org/wiki/Curve25519
+    ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1;
 
     ssl_prefer_server_ciphers on;