hoellen/dockerfiles
1
0
Fork 0
mirror of https://github.com/hoellen/dockerfiles.git synced 2025-07-03 07:35:41 +00:00
Code Issues Projects Releases Wiki Activity

UNMAINTAINED

Browse Source
This commit is contained in:
hoellen
2017-12-06 14:03:08 +01:00
parent 581c0a0c6e
commit b2be52764a
27 changed files with 0 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
unmaintained/reverse/rootfs/nginx/conf.d/ct.conf Normal file
View File

@ -0,0 +1,2 @@
ssl_ct on;
add_header Expect-CT "enforce; max-age=86400";

2
unmaintained/reverse/rootfs/nginx/conf.d/headers.conf Normal file
View File

@ -0,0 +1,2 @@
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";

1
unmaintained/reverse/rootfs/nginx/conf.d/hsts.conf Normal file
View File

@ -0,0 +1 @@
add_header Strict-Transport-Security "max-age=31536000";

4
unmaintained/reverse/rootfs/nginx/conf.d/ocsp.conf Normal file
View File

@ -0,0 +1,4 @@
ssl_stapling on;
ssl_stapling_verify on;
resolver 84.200.69.80 84.200.70.40 valid=300s;
resolver_timeout 5s;

11
unmaintained/reverse/rootfs/nginx/conf.d/proxy.conf Normal file
View File

@ -0,0 +1,11 @@
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Remote-Port $remote_port;
proxy_redirect off;
proxy_set_header Proxy "";
proxy_pass_header Server;

9
unmaintained/reverse/rootfs/nginx/conf.d/ssl.conf Normal file
View File

@ -0,0 +1,9 @@
ssl_protocols TLSv1.2;
ssl_ecdh_curve X25519:P-521:P-384;
ssl_ciphers EECDH+CHACHA20:EECDH+AESGCM;
ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:20m;
ssl_session_timeout 15m;
ssl_session_tickets off;
ssl_dyn_rec_enable on;