tronnet/nginx
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add security headers

Browse Source
This commit is contained in:
Arthur Lu 2023-05-13 06:03:54 +00:00
parent 9713a81c56
commit 91987eebdc
2 changed files with 14 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
nginx.conf
View File

@ -1,6 +1,5 @@
user nginx; user nginx;
worker_processes auto; worker_processes auto;
pid /run/nginx.pid;
events { events {
worker_connections 768; worker_connections 768;
} }

14
ssl-params.conf
View File

@ -14,3 +14,17 @@ ssl_dhparam /etc/ssl/certs/dhparam.pem;
# ssl cert paths # ssl cert paths
ssl_certificate /etc/letsencrypt/live/tronnet.net/fullchain.pem; ssl_certificate /etc/letsencrypt/live/tronnet.net/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/tronnet.net/privkey.pem; ssl_certificate_key /etc/letsencrypt/live/tronnet.net/privkey.pem;
proxy_hide_header X-Powered-By;
proxy_hide_header X-Frame-Options;
add_header X-Frame-Options DENY;
proxy_hide_header X-XSS-Protection;
add_header X-XSS-Protection 0;
proxy_hide_header X-Content-Type-Options;
add_header X-Content-Type-Options nosniff;
proxy_hide_header Referrer-Policy;
add_header Referrer-Policy strict-origin-when-cross-origin;
proxy_hide_header Strict-Transport-Security;
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload";
proxy_hide_header Access-Control-Allow-Origin;
add_header Access-Control-Allow-Origin https://tronnet.net;