首頁 探索 說明
登入
piratas
/
nginx.d
關註 2
讚好 0
複刻 1
Files 問題管理 0 合併請求 1 Wiki
分支: master
分支列表 標籤列表
nginx.d
/
sites-available
/
iuf.conf

iuf.conf 2.0 KB
永久連結 文件歷史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. ## Configuração para iuf.partidopirata.org
    2. 

  2. server {
    3. 

  3.   listen 80;
    4. 

  4.   listen [::]:80;
    5. 

  5.   server_name iuf.partidopirata.org;
    6. 

  6.   root /var/www/git/desgovernanca-site/;
    7. 

  7.   location / {
    8. 

  8.     proxy_pass http://entwickler;
    9. 

  9.     proxy_set_header Host $host;
    10. 

  10.     proxy_set_header X-Forwarded-For $remote_addr;
    11. 

  11.     proxy_set_header X-Forwarded-Proto $scheme;
    12. 

  12.   }
    13. 

  13. }
    14. 

  14. server {
    15. 

  15.   listen 80;
    16. 

  16.   listen [::]:80;
    17. 

  17.   server_name *.iuf.partidopirata.org;
    18. 

  18.   return 301 http://iuf.partidopirata.org$request_uri;
    19. 

  19. }
    20. 

  20. 

  21. ## SSL
    22. 

  22. server {
    23. 

  23.   listen 443 ssl;
    24. 

  24.   listen [::]:443 ssl;
    25. 

  25.   ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    26. 

  26.   ssl_prefer_server_ciphers on;
    27. 

  27.   ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
    28. 

  28.   ssl_ecdh_curve secp384r1;
    29. 

  29.   ssl_session_cache shared:SSL:10m;
    30. 

  30.   ssl_session_tickets off;
    31. 

  31.   ssl_stapling on;
    32. 

  32.   ssl_stapling_verify on;
    33. 

  33.   resolver 208.67.220.220 208.67.222.222 valid=300s;
    34. 

  34.   resolver_timeout 5s;
    35. 

  35.   add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
    36. 

  36.   add_header X-Frame-Options SAMEORIGIN;
    37. 

  37.   add_header X-Content-Type-Options nosniff;
    38. 

  38.   ssl_certificate /etc/letsencrypt/live/partidopirata.org/fullchain.pem;
    39. 

  39.   ssl_certificate_key /etc/letsencrypt/live/partidopirata.org/privkey.pem;
    40. 

  40.   ssl_trusted_certificate /etc/letsencrypt/live/partidopirata.org/chain.pem;
    41. 

  41. 

  42.   server_name iuf.partidopirata.org;
    43. 

  43.   root /var/www/git/desgovernanca-site/;
    44. 

  44.   location / {
    45. 

  45.     proxy_pass http://entwickler;
    46. 

  46.     proxy_set_header Host $host;
    47. 

  47.     proxy_set_header X-Forwarded-For $remote_addr;
    48. 

  48.     proxy_set_header X-Forwarded-Proto $scheme;
    49. 

  49.   }
    50. 

  50. }
    51. 

  51. 

  52. ## Tor
    53. 

  53. #server {
    54. 

  54. #  listen 127.0.0.1:42907;
    55. 

  55. #  allow 127.0.0.1;
    56. 

  56. #  deny all;
    57. 

  57. #
    58. 

  58. #  add_header X-Frame-Options SAMEORIGIN;
    59. 

  59. #  add_header X-Content-Type-Options nosniff;
    60. 

  60. #
    61. 

  61. #  server_name iufywjvpmxty53fy.onion;
    62. 

  62. #  root /var/www/git/desgovernanca-site/;
    63. 

  63. #}
    64. 

  64. #server {
    65. 

  65. #  listen 127.0.0.1:42904;
    66. 

  66. #  allow 127.0.0.1;
    67. 

  67. #  deny all;
    68. 

  68. #
    69. 

  69. #  add_header X-Frame-Options SAMEORIGIN;
    70. 

  70. #  add_header X-Content-Type-Options nosniff;
    71. 

  71. #
    72. 

  72. #  server_name v27tzey35klcfrpw.onion;
    73. 

  73. #  return 301 http://iufywjvpmxty53fy.onion$request_uri;
    74. 

  74. #}
    75. 

  75. 

  76.