1 files changed, 0 insertions, 36 deletions
diff --git a/tw/system/lud.scm b/tw/system/lud.scm
index 82a3e43f..9a07fb0d 100644
--- a/tw/system/lud.scm
+++ b/tw/system/lud.scm
@@ -26,21 +26,6 @@
 (define data-partition                ; /dev/sdc1
   (uuid "4715ae0e-5cef-48f2-a59e-025321153888" 'btrfs))
 
-(define httpd-intermediate-ssl-config "\
-# SSL configuration.
-# https://ssl-config.mozilla.org/#server=apache&version=2.4.53&config=intermediate&openssl=1.1.1n&ocsp=false&guideline=5.6
-SSLProtocol             all -SSLv3 -TLSv1 -TLSv1.1
-SSLCipherSuite          ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
-SSLHonorCipherOrder     Off
-SSLSessionTickets       Off
-SSLUseStapling          On
-SSLStaplingCache        \"shmcb:logs/ssl_stapling(32768)\"
-SSLSessionCache         \"shmcb:logs/ssl_scache(65535)\"
-# 20 minutes -- default is 5 minutes, which is not long, and the cache
-# size is limited anyway above.
-SSLSessionCacheTimeout  1200
-")
-
 (define-public %lud-system
   (operating-system
     (host-name "lud.twilken.net")
@@ -145,27 +130,6 @@ SSLSessionCacheTimeout  1200
               (certbot-configuration
                (email "letsencrypt@twilken.net")))
 
-            (service httpd-service-type
-              (httpd-configuration
-               (config
-                (httpd-config-file
-                 (listen '("443"))  ; leave port 80 free for certbot/nginx
-                 (modules
-                  (cons* (httpd-module (name "ssl_module") (file "modules/mod_ssl.so"))
-                         (httpd-module (name "proxy_module") (file "modules/mod_proxy.so"))
-                         (httpd-module (name "rewrite_module") (file "modules/mod_rewrite.so"))
-                         (httpd-module (name "alias_module") (file "modules/mod_alias.so"))
-                         (httpd-module (name "socache_shmcb_module")  ; for SSLStaplingCache
-                                       (file "modules/mod_socache_shmcb.so"))
-                         (httpd-module (name "proxy_fcgi_module")   ; for PHP/FastCGI
-                                       (file "modules/mod_proxy_fcgi.so"))
-                         %default-httpd-modules))
-                 ;; Preserve default value for `extra-config'.
-                 (extra-config
-                  (list "TypesConfig etc/httpd/mime.types\n"
-                        "ServerAdmin webmaster@twilken.net\n"
-                        httpd-intermediate-ssl-config))))))
-
             ;; For Nextcloud (and Streama)
             (service mysql-service-type
               (mysql-configuration