Update system "xa000-1" confuration file "Nginx - Inferencium - Internal - YouTube" from version "1.0.0-beta.1" to "1.0.1-beta.1"

2024-04-07 20:48:43 +00:00 · 2024-04-07 20:48:43 +00:00 · 18b061066b
commit 18b061066b
parent 5b0388cc17
1 changed files with 2 additions and 21 deletions
--- a/xa000-1/nginx/conf.d/inf-int-yt.conf
+++ b/xa000-1/nginx/conf.d/inf-int-yt.conf
@ -1,6 +1,6 @@
 # Inferencium - xa000-1
 # Nginx - Configuration - Inferencium - Internal - YouTube
-# Version: 1.0.0-beta.1
+# Version: 1.0.1-beta.1

 # Copyright 2024 Jake Winters
 # SPDX-License-Identifier: BSD-3-Clause
@ -39,25 +39,6 @@ server {
 	## Security
 	ssl_certificate					/etc/ssl/nginx/inferencium-int/fullchain.pem;
 	ssl_certificate_key				/etc/ssl/nginx/inferencium-int/privkey.pem;
-	ssl_protocols					TLSv1.3;
-	ssl_early_data					off;
-	ssl_ciphers						"ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256";
-	ssl_conf_command				Ciphersuites "TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256";
-	ssl_conf_command				Options PrioritizeChaCha;
-	ssl_prefer_server_ciphers		on;
-	ssl_ecdh_curve					x25519:secp256r1;
-	ssl_stapling					on;
-	ssl_stapling_verify				on;
-	ssl_session_timeout				1d;
-	ssl_session_cache				shared:MozSSL:10m;
-	ssl_session_cache				shared:ssl_session_cache:10m;
-	ssl_session_tickets				off;
-#	add_header						Content-Security-Policy "default-src 'self'; img-src 'self'; media-src 'self'; object-src 'self'; script-src 'self'; connect-src 'none'; frame-src 'self'; style-src 'self'; font-src 'self'";
-	add_header						Referrer-Policy no-referrer;
-	add_header						Strict-Transport-Security "max-age=126200000; always";
-	add_header						X-Content-Type-Options nosniff;
-	add_header						X-Frame-Options "DENY";
-	add_header						Set-Cookie "Path=/;Secure;HttpOnly";
-	ignore_invalid_headers			on;
+	include							include/header-security.conf;

 }