empyrean: fix HTTPS for nonexistent subdomains

nginx always chooses a server block for a connection and the listen parameters are checked before server name. This meant that HTTPS connections missed the default 444 server block because it only matched HTTP. With this, those requests now get an SSL error.

machine/empyrean/default.nix

@@ -75,6 +75,7 @@
       # Deny all other subdomains
       "alogoulogoi.com" = {
         default = true;
+        rejectSSL = true;
         locations."/".return = "444";
       };
     };