Moin ich wurde hier von einem User aufmerksam gemacht das mein Webserver bescheiden konfiguriert ich arbeite mit Ngnix aber bin was ngnix betrifft auch nicht wirklich Fitt vielleicht kann mir ja mal jemand helfen da auf zu räumen und zu optimieren. Ich wäre für jede Hilfe dankbar aktuell sieht meine Konfiguration so aus.
Code
if ($scheme !~* ^https ){
rewrite ^ https://radiodxfreunde.de$request_uri? permanent;
}
if (!-e $request_filename)
{
rewrite ^/(forum/|cms/|wcf/|gallery/|filebase/|poi/|calendar/|lexicon/)?([^.]+)$ /$1index.php?$2 last;
}
ssl_prefer_server_ciphers on;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
ssl_ciphers EECDH+AESGCM+AES128:EECDH+AESGCM+AES256:EECDH+CHACHA20:EDH+AESGCM+AES128:EDH+AESGCM+AES256:EDH+CHACHA20:EECDH+SHA256+AES128:EECDH+SHA384+AES256:EDH+SHA256+AES128:EDH+SHA256+AES256:EECDH+SHA1+AES128:EECDH+SHA1+AES256:EDH+SHA1+AES128:EDH+SHA1+AES256:EECDH+HIGH:EDH+HIGH:AESGCM+AES128:AESGCM+AES256:CHACHA20:SHA256+AES128:SHA256+AES256:SHA1+AES128:SHA1+AES256:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!KRB5:!aECDH:!EDH+3DES;
ssl_buffer_size 8k;
ssl_session_timeout 1d;
ssl_session_cache shared:SSL:50m;
resolver 8.8.8.8;
add_header P3P 'policyref="/w3c/p3p.xml", CP="IDC DSP COR DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT", CP="CAO PSA OUR"';
add_header Strict-Transport-Security "max-age=; includeSubdomains; ";
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header Last-Modified $date_gmt;
etag on;
gzip on;
gzip_vary on;
gzip_http_version 1.1;
gzip_comp_level 6;
gzip_min_length 1000;
gzip_proxied any;
gzip_types application/ecmascript;
gzip_types application/javascript;
gzip_types application/json;
gzip_types application/pdf;
gzip_types application/postscript;
gzip_types application/x-javascript;
gzip_types application/x-perl;
gzip_types application/x-httpd-cgi;
gzip_types application/xhtml+xml;
gzip_types application/vnd.ms-fontobject;
gzip_types application/ttf;
gzip_types application/x-ttf;
gzip_types application/otf;
gzip_types application/x-otf;
gzip_types application/truetype;
gzip_types application/opentype;
gzip_types application/x-opentype;
gzip_types application/woff;
gzip_types application/eot;
gzip_types application/font;
gzip_types application/font-woff woff;
gzip_types application/font-sfnt;
gzip_types application/xml+rss;
gzip_types image/svg+xml;
gzip_types image/gif;
gzip_types image/jpeg;
gzip_types image/x-icon;
gzip_types text/plain;
gzip_types text/richtext;
gzip_types text/css;
gzip_types text/csv;
gzip_types text/javascript;
gzip_types text/xml;
gzip_types text/x-script;
gzip_types text/x-component;
gzip_types text/x-java-source;
gzip_types font/ttf;
gzip_types font/otf;
gzip_types font/x-woff;
gzip_types multipart/bag;
gzip_types multipart/mixed;
gzip_buffers 16 8k;
gzip_disable "MSIE [1-6]\.(?!.*SV1)";
Alles anzeigen