36 lines
1.1 KiB
Plaintext
36 lines
1.1 KiB
Plaintext
|
server {
|
||
|
|
listen 80 default_server;
|
||
|
|
listen [::]:80 default_server ipv6only=on;
|
||
|
|
|
||
|
|
root /usr/share/nginx/html;
|
||
|
|
|
||
|
|
server_name web01.mjanja.co.ke;
|
||
|
|
|
||
|
|
location / {
|
||
|
|
try_files $uri $uri/ =404;
|
||
|
|
}
|
||
|
|
|
||
|
|
error_page 404 /404.html;
|
||
|
|
error_page 500 502 503 504 /50x.html;
|
||
|
|
location = /50x.html {
|
||
|
|
root /usr/share/nginx/html;
|
||
|
|
}
|
||
|
|
|
||
|
|
location ~ \.php$ {
|
||
|
|
# Zero-day exploit defense.
|
||
|
|
# http://forum.nginx.org/read.php?2,88845,page=3
|
||
|
|
# Won't work properly (404 error) if the file is not stored on this server, which is entirely possible with php-fpm/php-fcgi.
|
||
|
|
# Comment the 'try_files' line out if you set up php-fpm/php-fcgi on another machine. And then cross your fingers that you won't get hacked.
|
||
|
|
try_files $uri =404;
|
||
|
|
|
||
|
|
#NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini
|
||
|
|
fastcgi_split_path_info ^(.+\.php)(/.+)$;
|
||
|
|
|
||
|
|
fastcgi_pass php5-fpm-sock;
|
||
|
|
fastcgi_index index.php;
|
||
|
|
# set script path relative to document root in server block
|
||
|
|
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
|
||
|
|
include fastcgi_params;
|
||
|
|
}
|
||
|
|
}
|