Learn about Centmin Mod LEMP Stack today
Become a Member

Beta Branch update nginx vhost templates

Discussion in 'Centmin Mod Github Commits' started by eva2000, Feb 2, 2016.

Tags:
  1. eva2000

    eva2000 Administrator Staff Member

    28,957
    6,574
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,756
    Local Time:
    9:58 AM
    Nginx 1.13.x
    MariaDB 5.5
  2. Jimmy

    Jimmy Premium Member Premium Member

    1,025
    231
    63
    Oct 24, 2015
    East Coast USA
    Ratings:
    +555
    Local Time:
    7:58 PM
    1.13.x
    MariaDB 10.1.x
    Is there somewhere which lists what we should add to the files already created in an already existing install?
     
  3. eva2000

    eva2000 Administrator Staff Member

    28,957
    6,574
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,756
    Local Time:
    9:58 AM
    Nginx 1.13.x
    MariaDB 5.5
    if you read the actual commit linked above update nginx vhost templates · centminmod/centminmod@e7a2c90 · GitHub you can see

    there's unified or split view top right buttons to see diff of before and after changes which marks the exact line within respective files

    for http vhost it's between the pagespeed 3rd include line and limit_conn lines
    Code:
    #include /usr/local/nginx/conf/pagespeedstatslog.conf;
    
      #add_header X-Frame-Options SAMEORIGIN;
      #add_header X-Xss-Protection "1; mode=block" always;
      #add_header X-Content-Type-Options "nosniff" always;
    
      # limit_conn limit_per_ip 16;
    for https vhost it's replacing
    Code:
      #add_header  X-Content-Type-Options "nosniff";
      #add_header X-Frame-Options DENY;
    with
    Code:
      #add_header X-Frame-Options SAMEORIGIN;
      #add_header X-Xss-Protection "1; mode=block" always;
      #add_header X-Content-Type-Options "nosniff" always;
    Also updated the official vhost generator with same template additions for these additional security headers at centminmod.com/vhost.php.
     
    Last edited: Feb 3, 2016
    • Informative Informative x 1