server { listen %ip%:%web_ssl_port%; server_name %domain_idn% %alias_idn%; root %sdocroot%; index index.php index.html index.htm; access_log /var/log/nginx/domains/%domain%.log combined; access_log /var/log/nginx/domains/%domain%.bytes bytes; error_log /var/log/nginx/domains/%domain%.error.log error; ssl on; ssl_certificate %ssl_pem%; ssl_certificate_key %ssl_key%; location = /favicon.ico { try_files /favicon.ico =204; } location / { try_files $uri /index.php; location ~* ^.+\.(jpeg|jpg|png|gif|bmp|ico|svg|css|js)$ { valid_referers none blocked %domain_idn% %alias_idn%; if ($invalid_referer) { return 444; } expires max; } location ~* ^/(?:index|piwik)\.php$ { fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; if (!-f $document_root$fastcgi_script_name) { return 404; } fastcgi_pass %backend_lsnr%; include /etc/nginx/fastcgi_params; } } # Any other attempt to access PHP files returns a 404. location ~* ^.+\.php$ { return 404; } # Return a 404 for all text files. location ~* ^/(?:README|LICENSE[^.]*|LEGALNOTICE)(?:\.txt)*$ { return 404; } error_page 403 /error/404.html; error_page 404 /error/404.html; error_page 500 502 503 504 /error/50x.html; location /error/ { alias %home%/%user%/web/%domain%/document_errors/; } location ~* "/\.(htaccess|htpasswd)$" { deny all; return 404; } location /vstats/ { alias %home%/%user%/web/%domain%/stats/; include %home%/%user%/conf/web/%domain%.auth*; } include /etc/nginx/conf.d/phpmyadmin.inc*; include /etc/nginx/conf.d/phppgadmin.inc*; include /etc/nginx/conf.d/webmail.inc*; include %home%/%user%/conf/web/snginx.%domain%.conf*; }