diff --git a/files/etc/nginx/hedgedocs-nginx.conf.j2 b/files/etc/nginx/hedgedocs-nginx.conf.j2
index 9bd65707109b80d6bc7ddda25ccf9485e79321a3..c45c1f4ca1655b9c93217a1192215a821fe81d44 100644
--- a/files/etc/nginx/hedgedocs-nginx.conf.j2
+++ b/files/etc/nginx/hedgedocs-nginx.conf.j2
@@ -39,7 +39,7 @@ server {
 	ssl_ciphers "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384";
 
     # RFC-7919 recommended: https://wiki.mozilla.org/Security/Server_Side_TLS#ffdhe4096
-    ssl_dhparam /etc/ssl/ffdhe4096.pem;
+    ssl_dhparam /etc/ssl/ffdhe2048.pem;
     ssl_ecdh_curve secp521r1:secp384r1;
 
 	# Aditional Security Headers