# redirect from non-www to www 
# uncomment, save file and restart Nginx to enable
#server {
#            listen   80;
#            server_name MyDomain.com;
#            return 301 $scheme://www.MyDomain.com$request_uri;
#       }
 
server {
  listen 80;
  server_name MyDomain.com www.MyDomain.com;
  return 301 $scheme://www.MyDomain.com$request_uri;
  }
 
server {
        listen 443 ssl spdy;
        server_name MyDomain.com;
 
        ssl_certificate      /usr/local/nginx/conf/ssl/MyDomain.com/MyDomain.com-unified.crt;
        ssl_certificate_key  /usr/local/nginx/conf/ssl/MyDomain.com/MyDomain_com.key;
        ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
        ssl_session_cache      shared:SSL:10m;
        ssl_session_timeout  10m;
        ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:AES128:AES256:RC4-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK:!kEDH:!EDH:!CAMELLIA;
        ssl_prefer_server_ciphers   on;
        add_header Alternate-Protocol  443:npn-spdy/3;
        add_header Strict-Transport-Security "max-age=31536000; includeSubdomains;";
        #add_header  X-Content-Type-Options "nosniff";
        #add_header X-Frame-Options DENY;
        # nginx 1.5.9+ or higher 
        # http://n...content-available-to-author-only...x.org/en/docs/http/ngx_http_spdy_module.html#spdy_headers_comp
        # http://n...content-available-to-author-only...x.org/en/docs/http/ngx_http_ssl_module.html#ssl_buffer_size
        # spdy_headers_comp 0;
        # ssl_buffer_size 4k;
 
        # enable ocsp stapling
        resolver 8.8.8.8;
        ssl_stapling on;
        ssl_stapling_verify on;
        ssl_trusted_certificate /usr/local/nginx/conf/ssl/MyDomain.com/MyDomain.com-trusted.crt;
 
# ngx_pagespeed & ngx_pagespeed handler
include /usr/local/nginx/conf/pagespeed.conf;
#include /usr/local/nginx/conf/pagespeedhandler.conf;
#include /usr/local/nginx/conf/pagespeedstatslog.conf;
 
  # limit_conn limit_per_ip 16;
  # ssi  on;
 
  access_log /home/nginx/domains/MyDomain.com/log/access.log combined buffer=32k;
  error_log /home/nginx/domains/MyDomain.com/log/error.log;
 
  root /home/nginx/domains/MyDomain.com/public;
 
  location / {
 
# block common exploits, sql injections etc
  include /usr/local/nginx/conf/block.conf;
 
  # Enables directory listings when index file not found
  #autoindex  on;
 
  # Shows file listing times as local time
  #autoindex_localtime on;
 
  # Enable for vBulletin usage WITHOUT vbSEO installed
  #try_files    $uri $uri/ /index.php;
	try_files $uri $uri/ /index.php?q=$request_uri;
  }
 
  location ~ ^/(wp-login\.php){
  auth_basic "Administrator Login";
  auth_basic_user_file /usr/local/nginx/conf/wppasswd;
  include /usr/local/nginx/conf/php.conf;
  }
 
  include /usr/local/nginx/conf/wpsecure.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/drop.conf;
  #include /usr/local/nginx/conf/errorpage.conf;
}
 

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