@Gargron You can always use something else to terminate TLS before it reaches your web server. Either use stunnel that was made for those things or a reverse proxy like nginx,