Strona główna Odkrywaj Pomoc
Zaloguj się
bachir
/
alpine-web-werver
1
1
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: 900332e758
Gałęzie Tagi
alpine-web-w...
/
assets
/
lemp
/
default.nginxconf

default.nginxconf 2.7 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112 
  1. server {
    2. 

  2. 	listen 80 default_server;
    3. 

  3. 	listen [::]:80 default_server;
    4. 

  4. 

  5. 	# SSL configuration
    6. 

  6. 	#
    7. 

  7. 	# listen 443 ssl default_server;
    8. 

  8. 	# listen [::]:443 ssl default_server;
    9. 

  9. 	#
    10. 

  10. 	# Note: You should disable gzip for SSL traffic.
    11. 

  11. 	# See: https://bugs.debian.org/773332
    12. 

  12. 	#
    13. 

  13. 	# Read up on ssl_ciphers to ensure a secure configuration.
    14. 

  14. 	# See: https://bugs.debian.org/765782
    15. 

  15. 	#
    16. 

  16. 	# Self signed certs generated by the ssl-cert package
    17. 

  17. 	# Don't use them in a production server!
    18. 

  18. 	#
    19. 

  19. 	# include snippets/snakeoil.conf;
    20. 

  20. 

  21. 	root /var/www/html;
    22. 

  22. 

  23. 	# Add index.php to the list if you are using PHP
    24. 

  24. 	index index.html index.htm index.php;
    25. 

  25. 

  26. 	server_name _;
    27. 

  27. 

  28. 	location / {
    29. 

  29. 		# First attempt to serve request as file, then
    30. 

  30. 		# as directory, then fall back to displaying a 404.
    31. 

  31. 		try_files $uri $uri/ =404;
    32. 

  32. 	}
    33. 

  33. 

  34. 	location /phpmyadmin {
    35. 

  35. 		root /usr/share/webapps/;
    36. 

  36. 		auth_basic "Admin Login";
    37. 

  37.     auth_basic_user_file passwds;
    38. 

  38. 

  39.     # Deny static files
    40. 

  40.     location ~ ^/phpMyAdmin/(README|LICENSE|ChangeLog|DCO)$ {
    41. 

  41.       deny all;
    42. 

  42.     }
    43. 

  43. 

  44.     # Deny .md files
    45. 

  45.     location ~ ^/phpMyAdmin/(.+\.md)$ {
    46. 

  46.       deny all;
    47. 

  47.     }
    48. 

  48. 

  49.     # Deny setup directories
    50. 

  50.     location ~ ^/phpMyAdmin/(doc|sql|setup)/ {
    51. 

  51.       deny all;
    52. 

  52.     }
    53. 

  53. 

  54.     location ~ ^/phpmyadmin/(.+\.php)$ {
    55. 

  55.       fastcgi_pass      127.0.0.1:9000;
    56. 

  56.       fastcgi_index     index.php;
    57. 

  57.       include           fastcgi.conf;
    58. 

  58.       fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    59. 

  59.       try_files $uri $document_root$fastcgi_script_name =404;
    60. 

  60. 

  61.       fastcgi_split_path_info ^(.+\.php)(/.*)$;
    62. 

  62.       fastcgi_param PATH_INFO $fastcgi_path_info;
    63. 

  63. 

  64.       fastcgi_param HTTP_PROXY "";
    65. 

  65.       fastcgi_param HTTPS off;
    66. 

  66.       fastcgi_request_buffering off;
    67. 

  67.     }
    68. 

  68. 

  69.     location ~ ^/phpmyadmin/(.*\.(eot|otf|woff|ttf|css|js|jpg|jpeg|gif|png|ico|zip|tgz|gz|rar|bz2|xls|tar|bmp))$ {
    70. 

  70.       root /usr/share/webapps/;
    71. 

  71.       expires 30d;
    72. 

  72.       log_not_found off;
    73. 

  73.       access_log off;
    74. 

  74.     }
    75. 

  75. 	}
    76. 

  76. 

  77. 	# pass PHP scripts to FastCGI server
    78. 

  78. 	location ~ \.php$ {
    79. 

  79. 		fastcgi_pass      127.0.0.1:9000;
    80. 

  80.     fastcgi_index     index.php;
    81. 

  81.     include           fastcgi.conf;
    82. 

  82. 		fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    83. 

  83. 	}
    84. 

  84. 

  85. 	# deny access to .htaccess files, if Apache's document root
    86. 

  86. 	# concurs with nginx's one
    87. 

  87. 	location ~ /\.ht {
    88. 

  88. 		deny all;
    89. 

  89. 	}
    90. 

  90. 

  91.   ## Images and static content is treated different
    92. 

  92.   location ~* ^.+.(jpg|jpeg|gif|css|png|js|ico|xml)$ {
    93. 

  93.     access_log        off;
    94. 

  94.     expires           max;
    95. 

  95.   }
    96. 

  96. 

  97. 	location ~ /(libraries|setup/frames|setup/libs) {
    98. 

  98. 		deny all;
    99. 

  99. 		return 404;
    100. 

  100. 	}
    101. 

  101. 

  102. 	location /nginx_status {
    103. 

  103. 	  stub_status on;
    104. 

  104. 	  access_log   off;
    105. 

  105. 	  allow 127.0.0.1;
    106. 

  106. 	  # allow CURRENT-SERVER-IP;
    107. 

  107. 	  deny all;
    108. 

  108. 	}
    109. 

  109. 

  110.   # website should not be displayed inside a <frame>, an <iframe> or an <object>
    111. 

  111.   add_header X-Frame-Options DENY;
    112. 

  112. }
    113.