fastcgi_buffers 8 16k; fastcgi_buffer_size 32k; fastcgi_connect_timeout 300; fastcgi_send_timeout 300; fastcgi_read_timeout 300; server { listen 192.168.xxx.xxx:4433; if ($allowed_country = no) { return 444; } ssl on; ssl_certificate_key /etc/ssl/cert/zapto_org.pem; ssl_certificate /etc/ssl/cert/ca-bundle.pem; ssl_ciphers 'AES256+EECDH:AES256+EDH:!aNULL'; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_session_cache shared:SSL:10m; #ssl_stapling on; #ssl_stapling_verify on; resolver 8.8.4.4 8.8.8.8 valid=300s; resolver_timeout 10s; ssl_prefer_server_ciphers on; ssl_dhparam /etc/ssl/certs/dhparam.pem; add_header Strict-Transport-Security max-age=63072000; add_header X-Frame-Options DENY; add_header X-Content-Type-Options nosniff; # phpmyadmin location /html { alias /usr/share/phpmyadmin; index index.php; } location ~ ^/phpmyadmin/libraries { deny all; } location ~ ^/phpmyadmin/setup/lib { deny all; } location ~ ^/phpmyadmin/setup/(.+\.php)$ { auth_basic "phpMyAdmin Setup"; auth_basic_user_file "/etc/phpmyadmin/htpasswd.setup"; alias /usr/share/phpmyadmin/setup/$1; fastcgi_split_path_info ^(.+\.php)(/.+)$; fastcgi_pass php; fastcgi_index index.php; include fastcgi_params; } location ~ ^/phpmyadmin/(.+\.php)$ { alias /usr/share/phpmyadmin/$1; fastcgi_split_path_info ^(.+\.php)(/.+)$; fastcgi_pass php; fastcgi_index index.php; include fastcgi_params; } root /var/www/ssl; autoindex on; server_name zapto.org; auth_basic "Restricted"; #For Basic Auth auth_basic_user_file /etc/nginx/.htpasswd; #For Basic Auth location / { index index.php index.html; } location ~* \.php$ { # Ermöglicht die Verarbeitung von php Dateien try_files $uri /index.php; fastcgi_index index.php; fastcgi_pass 127.0.0.1:9000; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_param SCRIPT_NAME $fastcgi_script_name; } }