Just a few remarks:
- Such instructions are very helpful but only a recommendation at the time of writing. https://bettercrypto.org/static/applied-crypto-hardening.pdf gives advice on the cipher selection for a number of servers.
- Turning off TLS1.0 could be a problem on Android systems: SSL Initialisation failed with Nextcloud Android
- If you want to benefit from perfect forward secrecy (PFS), you should check your Diffie-Hellman (DH) parameters to be at least 1024-bit: https://weakdh.org/sysadmin.html
- If you start on a new system, use rather Ubuntu 16.04, it has faster php7.0 and the caching modules (apcu/redis) work out of the box