Skip to content

Instantly share code, notes, and snippets.

@leotm leotm/ghost
Created Jul 24, 2017

Embed
What would you like to do?
Original file which worked with HTTPS before went down
# /etc/nginx/sites-available/ghost
server {
listen 80;
server_name blog.netsca.pe;
location ~ ^/.well-known {
root /var/www/ghost;
}
location / {
return 301 https://$server_name$request_uri;
}
}
server {
listen 443 ssl;
server_name blog.netsca.pe;
root /var/www/ghost;
index index.html index.htm;
client_max_body_size 10G;
location / {
proxy_pass http://localhost:2368;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_buffering off;
}
ssl on;
ssl_certificate /etc/letsencrypt/live/blog.netsca.pe/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/blog.netsca.pe/privkey.pem;
ssl_prefer_server_ciphers On;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS;
location ~ ^/(sitemap.xml|robots.txt) {
root /var/www/ghost/public;
}
location ~ ^/.well-known {
root /var/www/ghost;
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.