tpotce/docker/deprecated/nginx/dist/conf/nginx.conf

user nginx;
worker_processes auto;
pid /run/nginx.pid;
load_module /usr/lib/nginx/modules/ngx_http_headers_more_filter_module.so;

events {
	worker_connections 768;
	# multi_accept on;
}

http {

	##
	# Basic Settings
	##

	sendfile on;
	tcp_nopush on;
	tcp_nodelay on;
	keepalive_timeout 65;
	types_hash_max_size 2048;
	# server_tokens off;

	# server_names_hash_bucket_size 64;
	# server_name_in_redirect off;

	include /etc/nginx/mime.types;
	default_type application/octet-stream;

	##
	# SSL Settings
	##

	#ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
	ssl_protocols TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE
	ssl_prefer_server_ciphers on;

	##
	# Logging Settings
	##

        log_format le_json '{ "timestamp": "$time_iso8601", '
 	'"src_ip": "$remote_addr", '
 	'"remote_user": "$remote_user", '
 	'"body_bytes_sent": "$body_bytes_sent", '
 	'"request_time": "$request_time", '
 	'"status": "$status", '
 	'"request": "$request", '
 	'"request_method": "$request_method", '
 	'"http_referrer": "$http_referer", '
 	'"http_user_agent": "$http_user_agent" }';
 
 	access_log /var/log/nginx/access.log le_json;
	error_log /var/log/nginx/error.log;

	##
	# Gzip Settings
	##

	gzip on;
	gzip_disable "msie6";

	# gzip_vary on;
	# gzip_proxied any;
	# gzip_comp_level 6;
	# gzip_buffers 16 8k;
	# gzip_http_version 1.1;
	# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;

	##
	# Virtual Host Configs
	##

	include /etc/nginx/conf.d/*.conf;
	include /etc/nginx/sites-enabled/*;
}
prepare for nginx docker image 2018-02-16 14:17:34 +00:00			`user nginx;`
			`worker_processes auto;`
			`pid /run/nginx.pid;`
			`load_module /usr/lib/nginx/modules/ngx_http_headers_more_filter_module.so;`

			`events {`
			`worker_connections 768;`
			`# multi_accept on;`
			`}`

			`http {`

			`##`
			`# Basic Settings`
			`##`

			`sendfile on;`
			`tcp_nopush on;`
			`tcp_nodelay on;`
			`keepalive_timeout 65;`
			`types_hash_max_size 2048;`
			`# server_tokens off;`

			`# server_names_hash_bucket_size 64;`
			`# server_name_in_redirect off;`

			`include /etc/nginx/mime.types;`
			`default_type application/octet-stream;`

			`##`
			`# SSL Settings`
			`##`

pin nginx to tls v1.3 2019-02-26 07:55:42 +00:00			`#ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE`
			`ssl_protocols TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE`
prepare for nginx docker image 2018-02-16 14:17:34 +00:00			`ssl_prefer_server_ciphers on;`

			`##`
			`# Logging Settings`
			`##`

			`log_format le_json '{ "timestamp": "$time_iso8601", '`
			`'"src_ip": "$remote_addr", '`
			`'"remote_user": "$remote_user", '`
			`'"body_bytes_sent": "$body_bytes_sent", '`
			`'"request_time": "$request_time", '`
			`'"status": "$status", '`
			`'"request": "$request", '`
			`'"request_method": "$request_method", '`
			`'"http_referrer": "$http_referer", '`
			`'"http_user_agent": "$http_user_agent" }';`

			`access_log /var/log/nginx/access.log le_json;`
			`error_log /var/log/nginx/error.log;`

			`##`
			`# Gzip Settings`
			`##`

			`gzip on;`
			`gzip_disable "msie6";`

			`# gzip_vary on;`
			`# gzip_proxied any;`
			`# gzip_comp_level 6;`
			`# gzip_buffers 16 8k;`
			`# gzip_http_version 1.1;`
			`# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;`

			`##`
			`# Virtual Host Configs`
			`##`

			`include /etc/nginx/conf.d/*.conf;`
			`include /etc/nginx/sites-enabled/*;`
			`}`