e0f7aeaf03
Nginx Conf updated. More protection to prevent DOS attacks. Skip cache for more cart and sitemap plugins.
48 lines
1.1 KiB
Plaintext
48 lines
1.1 KiB
Plaintext
# NGINX CONFIGURATION FOR COMMON LOCATION
|
|
# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE Webinoly
|
|
|
|
# Basic locations files
|
|
location = /favicon.ico {
|
|
access_log off;
|
|
log_not_found off;
|
|
expires max;
|
|
}
|
|
location = /robots.txt {
|
|
try_files $uri $uri/ /index.php?$args;
|
|
access_log off;
|
|
log_not_found off;
|
|
}
|
|
|
|
# Cache static files
|
|
location ~* \.(ogg|ogv|svg|svgz|eot|otf|woff|mp4|ttf|css|rss|atom|js|jpg|jpeg|gif|png|ico|zip|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf|swf)$ {
|
|
include common/headers-http.conf;
|
|
include common/headers-https.conf;
|
|
add_header "Access-Control-Allow-Origin" "*";
|
|
access_log off;
|
|
log_not_found off;
|
|
expires max;
|
|
}
|
|
|
|
# Security settings for better privacy
|
|
# Deny hidden files
|
|
location ~ /\.well-known {
|
|
allow all;
|
|
}
|
|
location ~ /\. {
|
|
deny all;
|
|
access_log off;
|
|
log_not_found off;
|
|
}
|
|
|
|
# Deny backup extensions & log files
|
|
location ~* ^.+\.(bak|log|old|orig|original|php#|php~|php_bak|save|swo|swp|sql)$ {
|
|
deny all;
|
|
access_log off;
|
|
log_not_found off;
|
|
}
|
|
|
|
# Return 403 forbidden for readme.(txt|html) or license.(txt|html) or example.(txt|html)
|
|
if ($uri ~* "^.+(readme|license|example)\.(txt|html)$") {
|
|
return 403;
|
|
}
|