From 41449dd28cd23389e298ba1ffc645e2ba11911ca Mon Sep 17 00:00:00 2001
From: Brendan Golden <git@brendan.ie>
Date: Tue, 23 May 2023 23:30:27 +0100
Subject: [PATCH] ldap: fixced the encryption key required

---
 applications/ldap.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/applications/ldap.nix b/applications/ldap.nix
index 142a62b..175fefa 100644
--- a/applications/ldap.nix
+++ b/applications/ldap.nix
@@ -116,7 +116,7 @@ Gonna use a priper nixos module for this
           olcTLSCertificateKeyFile = "/var/lib/acme/${cfg.domain.base}/key.pem";
           # got teh ciphers from https://access.redhat.com/articles/1474813
           # the ones provided on the nixos page didnt work
-          olcTLSCipherSuite = "ECDHE-RSA-AES256-SHA384:AES256-SHA256:!RC4:HIGH:!MD5:!EDH:!EXP:!SSLV2:!eNULL";
+          olcTLSCipherSuite = "ECDHE-RSA-AES256-SHA384:AES256-SHA256:!RC4:HIGH:!MD5:!aNULL:!EDH:!EXP:!SSLV2:!eNULL";
           olcTLSCRLCheck = "none";
           olcTLSVerifyClient = "never";
           olcTLSProtocolMin = "3.3";