Last active
June 6, 2017 20:01
-
-
Save deadanon/a9259a93279876ca6b2aa1ba0b4aaec5 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ###################################### | |
| #### Default Server Template #### | |
| #### Last Updated: June 6th, 2017 #### | |
| #### For Sxale.co #### | |
| ###################################### | |
| # Force SSL | |
| #server { | |
| # listen 80; | |
| # server_name DOMAIN.COM; | |
| # return 302 https://DOMAIN.com:443$request_uri; | |
| #} | |
| server { | |
| ######################### | |
| # Listen | |
| ######################### | |
| listen 80; | |
| ######################### | |
| # Basic Setup | |
| ######################### | |
| server_name DOMAIN.com; | |
| root /www/; | |
| index index.php index.html index.htm; | |
| ######################### | |
| # SSL Section | |
| ######################### | |
| #ssl on; | |
| #ssl_certificate /etc/nginx/certificates/star_mg.bundle; | |
| #ssl_certificate_key /etc/nginx/certificates/star_mg.key; | |
| #ssl_prefer_server_ciphers on; | |
| #ssl_session_cache shared:SSL:10m; | |
| #ssl_dhparam /etc/nginx/ssl/dhparam.pem; | |
| ssl_session_timeout 5m; | |
| #ssl_protocols TLSv1 TLSv1.1 TLSv1.2; | |
| #ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM$ | |
| ######################### | |
| # Header Injection | |
| ######################### | |
| #add_header Strict-Transport-Security max-age=63072000; | |
| #add_header X-Frame-Options DENY; | |
| #add_header X-Content-Type-Options nosniff; | |
| add_header Strict-Transport-Security "max-age=31536000"; | |
| #CUSTOM | |
| client_max_body_size 500M; | |
| ######################### | |
| # Location Blocks | |
| ######################### | |
| location / { | |
| try_files $uri $uri/ /index.php$is_args$args; | |
| } | |
| location ~ \.php$ { | |
| try_files $uri /index.php =404; | |
| fastcgi_pass 127.0.0.1:9000; | |
| fastcgi_index index.php; | |
| fastcgi_param SCRIPT_FILENAME /www$fastcgi_script_name; | |
| #fastcgi_param HTTPS on; | |
| #fastcgi_param HTTP_SCHEME https; | |
| include fastcgi_params; | |
| fastcgi_read_timeout 300; | |
| proxy_max_temp_file_size 0; | |
| proxy_connect_timeout 159s; | |
| proxy_read_timeout 300; | |
| proxy_send_timeout 300; | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment