Header changes and ssl

This commit is contained in:
us.nadeko.net 2024-01-30 02:08:04 -03:00
parent 911d491bef
commit c7f4692e76
3 changed files with 1 additions and 17 deletions

View file

@ -1,8 +1,6 @@
# security headers # security headers
add_header X-XSS-Protection "0" always;
add_header X-Content-Type-Options "nosniff" always; add_header X-Content-Type-Options "nosniff" always;
add_header X-Frame-Options "sameorigin" always;
add_header Referrer-Policy "same-origin" always; add_header Referrer-Policy "same-origin" always;
#add_header Content-Security-Policy "default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always; add_header X-Frame-Options "sameorigin" always;
add_header Permissions-Policy "interest-cohort=()" always; add_header Permissions-Policy "interest-cohort=()" always;
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always; add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always;

View file

@ -2,8 +2,4 @@
ssl_certificate /etc/ssl/nadeko.net/fullchain.ec.crt; ssl_certificate /etc/ssl/nadeko.net/fullchain.ec.crt;
ssl_certificate_key /etc/ssl/nadeko.net/nadeko.net.ec.key; ssl_certificate_key /etc/ssl/nadeko.net/nadeko.net.ec.key;
# RSA
#ssl_certificate /etc/ssl/fullchain.crt;
#ssl_certificate_key /etc/ssl/nadeko.net.key;
include configs/sslConfig.conf; include configs/sslConfig.conf;

View file

@ -3,7 +3,6 @@ worker_processes auto;
worker_rlimit_nofile 65535; worker_rlimit_nofile 65535;
pid /run/nginx.pid; pid /run/nginx.pid;
# Include modules
include /etc/nginx/modules-enabled/*.conf; include /etc/nginx/modules-enabled/*.conf;
events { events {
@ -31,7 +30,6 @@ http {
# MIME # MIME
include mime.types; include mime.types;
#default_type application/octet-stream;
# SSL # SSL
include configs/ssl.conf; include configs/ssl.conf;
@ -47,14 +45,6 @@ http {
# maximum time between packets nginx is allowed to pause when sending the client data # maximum time between packets nginx is allowed to pause when sending the client data
send_timeout 10s; send_timeout 10s;
#client_body_buffer_size 32k;
#client_max_body_size 2m;
#open_file_cache max=1024 inactive=10s;
#open_file_cache_valid 60s;
#open_file_cache_min_uses 2;
#open_file_cache_errors on;
# PERFORMANCE / ASYNC I/O # PERFORMANCE / ASYNC I/O
aio threads=default; aio threads=default;
aio_write on; aio_write on;