Beta Branch update nginx vhost templates

eva2000 · Feb 2, 2016

update nginx vhost templates

add optional security headers commented out by default

Continue reading...

123.09beta01 branch

Branch: https://github.com/centminmod/centminmod/tree/123.09beta01

Commit History: https://github.com/centminmod/centminmod/commits/123.09beta01

Jimmy · Feb 3, 2016

Is there somewhere which lists what we should add to the files already created in an already existing install?

eva2000 · Feb 3, 2016

if you read the actual commit linked above update nginx vhost templates · centminmod/centminmod@e7a2c90 · GitHub you can see

there's unified or split view top right buttons to see diff of before and after changes which marks the exact line within respective files

for http vhost it's between the pagespeed 3rd include line and limit_conn lines
Code:
#include /usr/local/nginx/conf/pagespeedstatslog.conf;

  #add_header X-Frame-Options SAMEORIGIN;
  #add_header X-Xss-Protection "1; mode=block" always;
  #add_header X-Content-Type-Options "nosniff" always;

  # limit_conn limit_per_ip 16;
for https vhost it's replacing
Code:
  #add_header  X-Content-Type-Options "nosniff";
  #add_header X-Frame-Options DENY;
with
Code:
  #add_header X-Frame-Options SAMEORIGIN;
  #add_header X-Xss-Protection "1; mode=block" always;
  #add_header X-Content-Type-Options "nosniff" always;
Also updated the official vhost generator with same template additions for these additional security headers at centminmod.com/vhost.php.

Log in / Register

Forums

Get the most out of your Centmin Mod LEMP stack

Beta Branch update nginx vhost templates

eva2000 Administrator Staff Member

Jimmy Well-Known Member

eva2000 Administrator Staff Member

.

Log in / Register

Useful Searches

Get the most out of your Centmin Mod LEMP stack

Beta Branch update nginx vhost templates

eva2000 Administrator Staff Member

Jimmy Well-Known Member

eva2000 Administrator Staff Member

.