Alexa-news-stentiment-evalu.../reader/nginx.conf


user  nginx;
worker_processes  1;

error_log  /var/log/nginx/error.log warn;
pid        /var/run/nginx.pid;


events {
    worker_connections  1024;
}


http {
    include       /etc/nginx/mime.types;
    default_type  application/octet-stream;

    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile        on;
    #tcp_nopush     on;

    keepalive_timeout  65;

    #gzip  on;
    
    server {
    # enables SSLv3/TLSv1, but not SSLv2 which is weak and should no longer be used.
    ssl_protocols SSLv3 TLSv1;
    
    # disables all weak ciphers
    ssl_ciphers ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM;

    server_name alexa.jopa.dev jopa.dev;

    ## Access and error logs.
    access_log /var/log/nginx/access.log;
    error_log  /var/log/nginx/error.log info;

    ## Keep alive timeout set to a greater value for SSL/TLS.
    keepalive_timeout 75 75;

    ## See the keepalive_timeout directive in nginx.conf.
    ## Server certificate and key.
    ssl on;
    ssl_certificate /app/cert/certificate.pem;
    ssl_certificate_key /app/cert/privkey.pem;
    ssl_session_timeout  5m;

    ## Strict Transport Security header for enhanced security. See
    ## http://www.chromium.org/sts. I've set it to 2 hours; set it to
    ## whichever age you want.
    add_header Strict-Transport-Security "max-age=7200";

    }
    include /etc/nginx/conf.d/*.conf;
}
cert stuff :( 2019-05-15 13:58:28 +00:00
			`user nginx;`
			`worker_processes 1;`

			`error_log /var/log/nginx/error.log warn;`
			`pid /var/run/nginx.pid;`


			`events {`
			`worker_connections 1024;`
			`}`


			`http {`
			`include /etc/nginx/mime.types;`
			`default_type application/octet-stream;`

			`log_format main '$remote_addr - $remote_user [$time_local] "$request" '`
			`'$status $body_bytes_sent "$http_referer" '`
			`'"$http_user_agent" "$http_x_forwarded_for"';`

			`access_log /var/log/nginx/access.log main;`

			`sendfile on;`
			`#tcp_nopush on;`

			`keepalive_timeout 65;`

			`#gzip on;`

			`server {`
			`# enables SSLv3/TLSv1, but not SSLv2 which is weak and should no longer be used.`
			`ssl_protocols SSLv3 TLSv1;`

			`# disables all weak ciphers`
			`ssl_ciphers ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM;`

			`server_name alexa.jopa.dev jopa.dev;`

			`## Access and error logs.`
			`access_log /var/log/nginx/access.log;`
			`error_log /var/log/nginx/error.log info;`

			`## Keep alive timeout set to a greater value for SSL/TLS.`
			`keepalive_timeout 75 75;`

			`## See the keepalive_timeout directive in nginx.conf.`
			`## Server certificate and key.`
			`ssl on;`
			`ssl_certificate /app/cert/certificate.pem;`
			`ssl_certificate_key /app/cert/privkey.pem;`
			`ssl_session_timeout 5m;`

			`## Strict Transport Security header for enhanced security. See`
			`## http://www.chromium.org/sts. I've set it to 2 hours; set it to`
			`## whichever age you want.`
			`add_header Strict-Transport-Security "max-age=7200";`

			`}`
			`include /etc/nginx/conf.d/*.conf;`
			`}`