From e62301de871e423e067e9747c63a1cd2d6fc0f72 Mon Sep 17 00:00:00 2001 From: VirtuBox Date: Thu, 20 Dec 2018 17:07:57 +0100 Subject: [PATCH] add chdir settings to php-fpm pools * add chdir = / to unix socket php-fpm pools * cleanup old files and folders --- docs/assets/atom-one-dark.css | 88 -- docs/assets/css/style.scss | 7 - docs/assets/highlight.pack.js | 2 - docs/assets/style.css | 1270 ----------------- docs/files/common.zip | Bin 14427 -> 0 bytes docs/files/etc/fail2ban/filter.d/ddos.conf | 9 - .../etc/fail2ban/filter.d/ee-wordpress.conf | 3 - .../fail2ban/filter.d/nginx-forbidden.conf | 4 - docs/files/etc/fail2ban/jail.d/custom.conf | 24 - docs/files/etc/fail2ban/jail.d/ddos.conf | 8 - docs/files/etc/mysql/my.cnf | 187 --- docs/files/etc/nginx/common/acl.conf | 8 - docs/files/etc/nginx/common/error_pages.conf | 16 - docs/files/etc/nginx/common/hsts-nosub.conf | 2 - docs/files/etc/nginx/common/hsts.conf | 3 - .../etc/nginx/common/locations-php7.conf | 116 -- .../etc/nginx/common/locations-php71.conf | 118 -- .../etc/nginx/common/locations-php72.conf | 122 -- docs/files/etc/nginx/common/locations.conf | 112 -- docs/files/etc/nginx/common/ocsp.conf | 4 - docs/files/etc/nginx/common/pagespeed.conf | 30 - docs/files/etc/nginx/common/php71.conf | 10 - docs/files/etc/nginx/common/php72.conf | 10 - docs/files/etc/nginx/common/protect.conf | 21 - docs/files/etc/nginx/common/redis-php71.conf | 56 - docs/files/etc/nginx/common/redis-php72.conf | 56 - docs/files/etc/nginx/common/w3tc-php71.conf | 31 - docs/files/etc/nginx/common/w3tc-php72.conf | 31 - .../files/etc/nginx/common/wpcommon-php7.conf | 37 - .../etc/nginx/common/wpcommon-php71.conf | 37 - .../etc/nginx/common/wpcommon-php72.conf | 37 - docs/files/etc/nginx/common/wpfc-php71.conf | 37 - docs/files/etc/nginx/common/wpfc-php72.conf | 37 - docs/files/etc/nginx/common/wpsc-php71.conf | 31 - docs/files/etc/nginx/common/wpsc-php72.conf | 31 - docs/files/etc/nginx/conf.d/cloudflare.conf | 27 - docs/files/etc/nginx/conf.d/fastcgi.conf | 19 - .../etc/nginx/conf.d/map-wp-fascgi-cache.conf | 42 - docs/files/etc/nginx/conf.d/upstream.conf | 35 - docs/files/etc/nginx/conf.d/webp.conf | 4 - docs/files/etc/nginx/mime.types | 91 -- docs/files/etc/nginx/nginx-intermediate.conf | 167 --- docs/files/etc/nginx/nginx-tlsv12.conf | 186 --- docs/files/etc/nginx/nginx.conf | 188 --- docs/files/etc/nginx/proxy_params | 13 - docs/files/etc/nginx/sites-available/22222 | 90 -- docs/files/etc/nginx/sites-available/default | 112 -- docs/files/etc/ntp.conf | 72 - docs/files/etc/php/7.0/cli/php.ini | 191 --- docs/files/etc/php/7.0/fpm/php.ini | 191 --- docs/files/etc/php/7.1/cli/php.ini | 190 --- docs/files/etc/php/7.1/fpm/php.ini | 191 --- docs/files/etc/php/7.1/fpm/pool.d/www.conf | 15 - docs/files/etc/php/7.2/cli/php.ini | 185 --- docs/files/etc/php/7.2/fpm/php.ini | 185 --- docs/files/etc/php/7.2/fpm/pool.d/www.conf | 15 - docs/files/etc/security/limits.conf | 61 - docs/files/etc/ssh/sshd_config | 45 - .../sysctl.d/60-ubuntu-nginx-web-server.conf | 266 ---- .../system/mariadb.service.d/limits.conf | 2 - .../system/netdata.service.d/limits.conf | 2 - .../system/nginx.service.d/limits.conf | 2 - docs/files/var/www/.bashrc | 70 - docs/files/var/www/.profile | 7 - etc/php/7.0/pool.d/www-sock.conf | 2 +- etc/php/7.0/pool.d/www-two-sock..conf | 2 +- etc/php/7.1/fpm/pool.d/www-sock.conf | 2 +- etc/php/7.1/fpm/pool.d/www-two-sock..conf | 2 +- etc/php/7.2/fpm/pool.d/www-sock.conf | 2 +- etc/php/7.2/fpm/pool.d/www-two-sock..conf | 2 +- etc/php/7.3/fpm/pool.d/www-sock.conf | 2 +- etc/php/7.3/fpm/pool.d/www-two-sock..conf | 2 +- 72 files changed, 8 insertions(+), 5267 deletions(-) delete mode 100644 docs/assets/atom-one-dark.css delete mode 100644 docs/assets/css/style.scss delete mode 100644 docs/assets/highlight.pack.js delete mode 100644 docs/assets/style.css delete mode 100644 docs/files/common.zip delete mode 100644 docs/files/etc/fail2ban/filter.d/ddos.conf delete mode 100644 docs/files/etc/fail2ban/filter.d/ee-wordpress.conf delete mode 100644 docs/files/etc/fail2ban/filter.d/nginx-forbidden.conf delete mode 100644 docs/files/etc/fail2ban/jail.d/custom.conf delete mode 100644 docs/files/etc/fail2ban/jail.d/ddos.conf delete mode 100644 docs/files/etc/mysql/my.cnf delete mode 100644 docs/files/etc/nginx/common/acl.conf delete mode 100644 docs/files/etc/nginx/common/error_pages.conf delete mode 100644 docs/files/etc/nginx/common/hsts-nosub.conf delete mode 100644 docs/files/etc/nginx/common/hsts.conf delete mode 100644 docs/files/etc/nginx/common/locations-php7.conf delete mode 100644 docs/files/etc/nginx/common/locations-php71.conf delete mode 100644 docs/files/etc/nginx/common/locations-php72.conf delete mode 100644 docs/files/etc/nginx/common/locations.conf delete mode 100644 docs/files/etc/nginx/common/ocsp.conf delete mode 100644 docs/files/etc/nginx/common/pagespeed.conf delete mode 100644 docs/files/etc/nginx/common/php71.conf delete mode 100644 docs/files/etc/nginx/common/php72.conf delete mode 100644 docs/files/etc/nginx/common/protect.conf delete mode 100644 docs/files/etc/nginx/common/redis-php71.conf delete mode 100644 docs/files/etc/nginx/common/redis-php72.conf delete mode 100644 docs/files/etc/nginx/common/w3tc-php71.conf delete mode 100644 docs/files/etc/nginx/common/w3tc-php72.conf delete mode 100644 docs/files/etc/nginx/common/wpcommon-php7.conf delete mode 100644 docs/files/etc/nginx/common/wpcommon-php71.conf delete mode 100644 docs/files/etc/nginx/common/wpcommon-php72.conf delete mode 100644 docs/files/etc/nginx/common/wpfc-php71.conf delete mode 100644 docs/files/etc/nginx/common/wpfc-php72.conf delete mode 100644 docs/files/etc/nginx/common/wpsc-php71.conf delete mode 100644 docs/files/etc/nginx/common/wpsc-php72.conf delete mode 100644 docs/files/etc/nginx/conf.d/cloudflare.conf delete mode 100644 docs/files/etc/nginx/conf.d/fastcgi.conf delete mode 100644 docs/files/etc/nginx/conf.d/map-wp-fascgi-cache.conf delete mode 100644 docs/files/etc/nginx/conf.d/upstream.conf delete mode 100644 docs/files/etc/nginx/conf.d/webp.conf delete mode 100644 docs/files/etc/nginx/mime.types delete mode 100644 docs/files/etc/nginx/nginx-intermediate.conf delete mode 100644 docs/files/etc/nginx/nginx-tlsv12.conf delete mode 100644 docs/files/etc/nginx/nginx.conf delete mode 100644 docs/files/etc/nginx/proxy_params delete mode 100644 docs/files/etc/nginx/sites-available/22222 delete mode 100644 docs/files/etc/nginx/sites-available/default delete mode 100644 docs/files/etc/ntp.conf delete mode 100644 docs/files/etc/php/7.0/cli/php.ini delete mode 100644 docs/files/etc/php/7.0/fpm/php.ini delete mode 100644 docs/files/etc/php/7.1/cli/php.ini delete mode 100644 docs/files/etc/php/7.1/fpm/php.ini delete mode 100644 docs/files/etc/php/7.1/fpm/pool.d/www.conf delete mode 100644 docs/files/etc/php/7.2/cli/php.ini delete mode 100644 docs/files/etc/php/7.2/fpm/php.ini delete mode 100644 docs/files/etc/php/7.2/fpm/pool.d/www.conf delete mode 100644 docs/files/etc/security/limits.conf delete mode 100644 docs/files/etc/ssh/sshd_config delete mode 100644 docs/files/etc/sysctl.d/60-ubuntu-nginx-web-server.conf delete mode 100644 docs/files/etc/systemd/system/mariadb.service.d/limits.conf delete mode 100644 docs/files/etc/systemd/system/netdata.service.d/limits.conf delete mode 100644 docs/files/etc/systemd/system/nginx.service.d/limits.conf delete mode 100644 docs/files/var/www/.bashrc delete mode 100644 docs/files/var/www/.profile diff --git a/docs/assets/atom-one-dark.css b/docs/assets/atom-one-dark.css deleted file mode 100644 index 33dcb50..0000000 --- a/docs/assets/atom-one-dark.css +++ /dev/null @@ -1,88 +0,0 @@ -/* - -Atom One Dark by Daniel Gamage -Original One Dark Syntax theme from https://github.com/atom/one-dark-syntax - -base: #282c34 -mono-1: #abb2bf -mono-2: #818896 -mono-3: #5c6370 -hue-1: #56b6c2 -hue-2: #61aeee -hue-3: #c678dd -hue-4: #98c379 -hue-5: #e06c75 -hue-5-2: #be5046 -hue-6: #d19a66 -hue-6-2: #e6c07b - -*/ - -.hljs { - display: block; - overflow-x: auto; - padding: 0.5em; - color: #abb2bf; - background: #282c34; -} - -.hljs-comment, -.hljs-quote { - color: #5c6370; - font-style: italic; -} - -.hljs-doctag, -.hljs-keyword, -.hljs-formula { - color: #c678dd; -} - -.hljs-literal { - color: #56b6c2; -} - -.hljs-string, -.hljs-regexp, -.hljs-addition, -.hljs-attribute, -.hljs-meta-string { - color: #98c379; -} - -.hljs-built_in, -.hljs-class .hljs-title { - color: #e6c07b; -} - -.hljs-attr, -.hljs-variable, -.hljs-template-variable, -.hljs-type, -.hljs-selector-class, -.hljs-selector-attr, -.hljs-selector-pseudo, -.hljs-number { - color: #d19a66; -} - -.hljs-symbol, -.hljs-bullet, -.hljs-link, -.hljs-meta, -.hljs-selector-id, -.hljs-title { - color: #61aeee; -} - -.hljs-emphasis { - font-style: italic; -} - -.hljs-strong { - font-weight: bold; -} - -.hljs-link { - text-decoration: underline; -} diff --git a/docs/assets/css/style.scss b/docs/assets/css/style.scss deleted file mode 100644 index 43953ff..0000000 --- a/docs/assets/css/style.scss +++ /dev/null @@ -1,7 +0,0 @@ ---- ---- - -@import 'jekyll-theme-cayman'; -@media screen and (min-width: 64em) { -max-width: 72rem; -} diff --git a/docs/assets/highlight.pack.js b/docs/assets/highlight.pack.js deleted file mode 100644 index 584253f..0000000 --- a/docs/assets/highlight.pack.js +++ /dev/null @@ -1,2 +0,0 @@ -/*! highlight.js v9.12.0 | BSD3 License | git.io/hljslicense */ -!function(e){var n="object"==typeof window&&window||"object"==typeof self&&self;"undefined"!=typeof exports?e(exports):n&&(n.hljs=e({}),"function"==typeof define&&define.amd&&define([],function(){return n.hljs}))}(function(e){function n(e){return e.replace(/&/g,"&").replace(//g,">")}function t(e){return e.nodeName.toLowerCase()}function r(e,n){var t=e&&e.exec(n);return t&&0===t.index}function a(e){return k.test(e)}function i(e){var n,t,r,i,o=e.className+" ";if(o+=e.parentNode?e.parentNode.className:"",t=B.exec(o))return w(t[1])?t[1]:"no-highlight";for(o=o.split(/\s+/),n=0,r=o.length;r>n;n++)if(i=o[n],a(i)||w(i))return i}function o(e){var n,t={},r=Array.prototype.slice.call(arguments,1);for(n in e)t[n]=e[n];return r.forEach(function(e){for(n in e)t[n]=e[n]}),t}function u(e){var n=[];return function r(e,a){for(var i=e.firstChild;i;i=i.nextSibling)3===i.nodeType?a+=i.nodeValue.length:1===i.nodeType&&(n.push({event:"start",offset:a,node:i}),a=r(i,a),t(i).match(/br|hr|img|input/)||n.push({event:"stop",offset:a,node:i}));return a}(e,0),n}function c(e,r,a){function i(){return e.length&&r.length?e[0].offset!==r[0].offset?e[0].offset"}function u(e){s+=""}function c(e){("start"===e.event?o:u)(e.node)}for(var l=0,s="",f=[];e.length||r.length;){var g=i();if(s+=n(a.substring(l,g[0].offset)),l=g[0].offset,g===e){f.reverse().forEach(u);do c(g.splice(0,1)[0]),g=i();while(g===e&&g.length&&g[0].offset===l);f.reverse().forEach(o)}else"start"===g[0].event?f.push(g[0].node):f.pop(),c(g.splice(0,1)[0])}return s+n(a.substr(l))}function l(e){return e.v&&!e.cached_variants&&(e.cached_variants=e.v.map(function(n){return o(e,{v:null},n)})),e.cached_variants||e.eW&&[o(e)]||[e]}function s(e){function n(e){return e&&e.source||e}function t(t,r){return new RegExp(n(t),"m"+(e.cI?"i":"")+(r?"g":""))}function r(a,i){if(!a.compiled){if(a.compiled=!0,a.k=a.k||a.bK,a.k){var o={},u=function(n,t){e.cI&&(t=t.toLowerCase()),t.split(" ").forEach(function(e){var t=e.split("|");o[t[0]]=[n,t[1]?Number(t[1]):1]})};"string"==typeof a.k?u("keyword",a.k):x(a.k).forEach(function(e){u(e,a.k[e])}),a.k=o}a.lR=t(a.l||/\w+/,!0),i&&(a.bK&&(a.b="\\b("+a.bK.split(" ").join("|")+")\\b"),a.b||(a.b=/\B|\b/),a.bR=t(a.b),a.e||a.eW||(a.e=/\B|\b/),a.e&&(a.eR=t(a.e)),a.tE=n(a.e)||"",a.eW&&i.tE&&(a.tE+=(a.e?"|":"")+i.tE)),a.i&&(a.iR=t(a.i)),null==a.r&&(a.r=1),a.c||(a.c=[]),a.c=Array.prototype.concat.apply([],a.c.map(function(e){return l("self"===e?a:e)})),a.c.forEach(function(e){r(e,a)}),a.starts&&r(a.starts,i);var c=a.c.map(function(e){return e.bK?"\\.?("+e.b+")\\.?":e.b}).concat([a.tE,a.i]).map(n).filter(Boolean);a.t=c.length?t(c.join("|"),!0):{exec:function(){return null}}}}r(e)}function f(e,t,a,i){function o(e,n){var t,a;for(t=0,a=n.c.length;a>t;t++)if(r(n.c[t].bR,e))return n.c[t]}function u(e,n){if(r(e.eR,n)){for(;e.endsParent&&e.parent;)e=e.parent;return e}return e.eW?u(e.parent,n):void 0}function c(e,n){return!a&&r(n.iR,e)}function l(e,n){var t=N.cI?n[0].toLowerCase():n[0];return e.k.hasOwnProperty(t)&&e.k[t]}function p(e,n,t,r){var a=r?"":I.classPrefix,i='',i+n+o}function h(){var e,t,r,a;if(!E.k)return n(k);for(a="",t=0,E.lR.lastIndex=0,r=E.lR.exec(k);r;)a+=n(k.substring(t,r.index)),e=l(E,r),e?(B+=e[1],a+=p(e[0],n(r[0]))):a+=n(r[0]),t=E.lR.lastIndex,r=E.lR.exec(k);return a+n(k.substr(t))}function d(){var e="string"==typeof E.sL;if(e&&!y[E.sL])return n(k);var t=e?f(E.sL,k,!0,x[E.sL]):g(k,E.sL.length?E.sL:void 0);return E.r>0&&(B+=t.r),e&&(x[E.sL]=t.top),p(t.language,t.value,!1,!0)}function b(){L+=null!=E.sL?d():h(),k=""}function v(e){L+=e.cN?p(e.cN,"",!0):"",E=Object.create(e,{parent:{value:E}})}function m(e,n){if(k+=e,null==n)return b(),0;var t=o(n,E);if(t)return t.skip?k+=n:(t.eB&&(k+=n),b(),t.rB||t.eB||(k=n)),v(t,n),t.rB?0:n.length;var r=u(E,n);if(r){var a=E;a.skip?k+=n:(a.rE||a.eE||(k+=n),b(),a.eE&&(k=n));do E.cN&&(L+=C),E.skip||(B+=E.r),E=E.parent;while(E!==r.parent);return r.starts&&v(r.starts,""),a.rE?0:n.length}if(c(n,E))throw new Error('Illegal lexeme "'+n+'" for mode "'+(E.cN||"")+'"');return k+=n,n.length||1}var N=w(e);if(!N)throw new Error('Unknown language: "'+e+'"');s(N);var R,E=i||N,x={},L="";for(R=E;R!==N;R=R.parent)R.cN&&(L=p(R.cN,"",!0)+L);var k="",B=0;try{for(var M,j,O=0;;){if(E.t.lastIndex=O,M=E.t.exec(t),!M)break;j=m(t.substring(O,M.index),M[0]),O=M.index+j}for(m(t.substr(O)),R=E;R.parent;R=R.parent)R.cN&&(L+=C);return{r:B,value:L,language:e,top:E}}catch(T){if(T.message&&-1!==T.message.indexOf("Illegal"))return{r:0,value:n(t)};throw T}}function g(e,t){t=t||I.languages||x(y);var r={r:0,value:n(e)},a=r;return t.filter(w).forEach(function(n){var t=f(n,e,!1);t.language=n,t.r>a.r&&(a=t),t.r>r.r&&(a=r,r=t)}),a.language&&(r.second_best=a),r}function p(e){return I.tabReplace||I.useBR?e.replace(M,function(e,n){return I.useBR&&"\n"===e?"
":I.tabReplace?n.replace(/\t/g,I.tabReplace):""}):e}function h(e,n,t){var r=n?L[n]:t,a=[e.trim()];return e.match(/\bhljs\b/)||a.push("hljs"),-1===e.indexOf(r)&&a.push(r),a.join(" ").trim()}function d(e){var n,t,r,o,l,s=i(e);a(s)||(I.useBR?(n=document.createElementNS("http://www.w3.org/1999/xhtml","div"),n.innerHTML=e.innerHTML.replace(/\n/g,"").replace(//g,"\n")):n=e,l=n.textContent,r=s?f(s,l,!0):g(l),t=u(n),t.length&&(o=document.createElementNS("http://www.w3.org/1999/xhtml","div"),o.innerHTML=r.value,r.value=c(t,u(o),l)),r.value=p(r.value),e.innerHTML=r.value,e.className=h(e.className,s,r.language),e.result={language:r.language,re:r.r},r.second_best&&(e.second_best={language:r.second_best.language,re:r.second_best.r}))}function b(e){I=o(I,e)}function v(){if(!v.called){v.called=!0;var e=document.querySelectorAll("pre code");E.forEach.call(e,d)}}function m(){addEventListener("DOMContentLoaded",v,!1),addEventListener("load",v,!1)}function N(n,t){var r=y[n]=t(e);r.aliases&&r.aliases.forEach(function(e){L[e]=n})}function R(){return x(y)}function w(e){return e=(e||"").toLowerCase(),y[e]||y[L[e]]}var E=[],x=Object.keys,y={},L={},k=/^(no-?highlight|plain|text)$/i,B=/\blang(?:uage)?-([\w-]+)\b/i,M=/((^(<[^>]+>|\t|)+|(?:\n)))/gm,C="",I={classPrefix:"hljs-",tabReplace:null,useBR:!1,languages:void 0};return e.highlight=f,e.highlightAuto=g,e.fixMarkup=p,e.highlightBlock=d,e.configure=b,e.initHighlighting=v,e.initHighlightingOnLoad=m,e.registerLanguage=N,e.listLanguages=R,e.getLanguage=w,e.inherit=o,e.IR="[a-zA-Z]\\w*",e.UIR="[a-zA-Z_]\\w*",e.NR="\\b\\d+(\\.\\d+)?",e.CNR="(-?)(\\b0[xX][a-fA-F0-9]+|(\\b\\d+(\\.\\d*)?|\\.\\d+)([eE][-+]?\\d+)?)",e.BNR="\\b(0b[01]+)",e.RSR="!|!=|!==|%|%=|&|&&|&=|\\*|\\*=|\\+|\\+=|,|-|-=|/=|/|:|;|<<|<<=|<=|<|===|==|=|>>>=|>>=|>=|>>>|>>|>|\\?|\\[|\\{|\\(|\\^|\\^=|\\||\\|=|\\|\\||~",e.BE={b:"\\\\[\\s\\S]",r:0},e.ASM={cN:"string",b:"'",e:"'",i:"\\n",c:[e.BE]},e.QSM={cN:"string",b:'"',e:'"',i:"\\n",c:[e.BE]},e.PWM={b:/\b(a|an|the|are|I'm|isn't|don't|doesn't|won't|but|just|should|pretty|simply|enough|gonna|going|wtf|so|such|will|you|your|they|like|more)\b/},e.C=function(n,t,r){var a=e.inherit({cN:"comment",b:n,e:t,c:[]},r||{});return a.c.push(e.PWM),a.c.push({cN:"doctag",b:"(?:TODO|FIXME|NOTE|BUG|XXX):",r:0}),a},e.CLCM=e.C("//","$"),e.CBCM=e.C("/\\*","\\*/"),e.HCM=e.C("#","$"),e.NM={cN:"number",b:e.NR,r:0},e.CNM={cN:"number",b:e.CNR,r:0},e.BNM={cN:"number",b:e.BNR,r:0},e.CSSNM={cN:"number",b:e.NR+"(%|em|ex|ch|rem|vw|vh|vmin|vmax|cm|mm|in|pt|pc|px|deg|grad|rad|turn|s|ms|Hz|kHz|dpi|dpcm|dppx)?",r:0},e.RM={cN:"regexp",b:/\//,e:/\/[gimuy]*/,i:/\n/,c:[e.BE,{b:/\[/,e:/\]/,r:0,c:[e.BE]}]},e.TM={cN:"title",b:e.IR,r:0},e.UTM={cN:"title",b:e.UIR,r:0},e.METHOD_GUARD={b:"\\.\\s*"+e.UIR,r:0},e});hljs.registerLanguage("bash",function(e){var t={cN:"variable",v:[{b:/\$[\w\d#@][\w\d_]*/},{b:/\$\{(.*?)}/}]},s={cN:"string",b:/"/,e:/"/,c:[e.BE,t,{cN:"variable",b:/\$\(/,e:/\)/,c:[e.BE]}]},a={cN:"string",b:/'/,e:/'/};return{aliases:["sh","zsh"],l:/\b-?[a-z\._]+\b/,k:{keyword:"if then else elif fi for while in do done case esac function",literal:"true false",built_in:"break cd continue eval exec exit export getopts hash pwd readonly return shift test times trap umask unset alias bind builtin caller command declare echo enable help let local logout mapfile printf read readarray source type typeset ulimit unalias set shopt autoload bg bindkey bye cap chdir clone comparguments compcall compctl compdescribe compfiles compgroups compquote comptags comptry compvalues dirs disable disown echotc echoti emulate fc fg float functions getcap getln history integer jobs kill limit log noglob popd print pushd pushln rehash sched setcap setopt stat suspend ttyctl unfunction unhash unlimit unsetopt vared wait whence where which zcompile zformat zftp zle zmodload zparseopts zprof zpty zregexparse zsocket zstyle ztcp",_:"-ne -eq -lt -gt -f -d -e -s -l -a"},c:[{cN:"meta",b:/^#![^\n]+sh\s*$/,r:10},{cN:"function",b:/\w[\w\d_]*\s*\(\s*\)\s*\{/,rB:!0,c:[e.inherit(e.TM,{b:/\w[\w\d_]*/})],r:0},e.HCM,s,a,t]}});hljs.registerLanguage("dockerfile",function(e){return{aliases:["docker"],cI:!0,k:"from maintainer expose env arg user onbuild stopsignal",c:[e.HCM,e.ASM,e.QSM,e.NM,{bK:"run cmd entrypoint volume add copy workdir label healthcheck shell",starts:{e:/[^\\]\n/,sL:"bash"}}],i:")?",r="false synchronized int abstract float private char boolean static null if const for true while long strictfp finally protected import native final void enum else break transient catch instanceof byte super volatile case assert short package default double public try this switch continue throws protected public private module requires exports do",s="\\b(0[bB]([01]+[01_]+[01]+|[01]+)|0[xX]([a-fA-F0-9]+[a-fA-F0-9_]+[a-fA-F0-9]+|[a-fA-F0-9]+)|(([\\d]+[\\d_]+[\\d]+|[\\d]+)(\\.([\\d]+[\\d_]+[\\d]+|[\\d]+))?|\\.([\\d]+[\\d_]+[\\d]+|[\\d]+))([eE][-+]?\\d+)?)[lLfF]?",c={cN:"number",b:s,r:0};return{aliases:["jsp"],k:r,i:/<\/|#/,c:[e.C("/\\*\\*","\\*/",{r:0,c:[{b:/\w+@/,r:0},{cN:"doctag",b:"@[A-Za-z]+"}]}),e.CLCM,e.CBCM,e.ASM,e.QSM,{cN:"class",bK:"class interface",e:/[{;=]/,eE:!0,k:"class interface",i:/[:"\[\]]/,c:[{bK:"extends implements"},e.UTM]},{bK:"new throw return else",r:0},{cN:"function",b:"("+t+"\\s+)+"+e.UIR+"\\s*\\(",rB:!0,e:/[{;=]/,eE:!0,k:r,c:[{b:e.UIR+"\\s*\\(",rB:!0,r:0,c:[e.UTM]},{cN:"params",b:/\(/,e:/\)/,k:r,r:0,c:[e.ASM,e.QSM,e.CNM,e.CBCM]},e.CLCM,e.CBCM]},c,{cN:"meta",b:"@[A-Za-z]+"}]}});hljs.registerLanguage("python",function(e){var r={keyword:"and elif is global as in if from raise for except finally print import pass return exec else break not with class assert yield try while continue del or def lambda async await nonlocal|10 None True False",built_in:"Ellipsis NotImplemented"},b={cN:"meta",b:/^(>>>|\.\.\.) /},c={cN:"subst",b:/\{/,e:/\}/,k:r,i:/#/},a={cN:"string",c:[e.BE],v:[{b:/(u|b)?r?'''/,e:/'''/,c:[b],r:10},{b:/(u|b)?r?"""/,e:/"""/,c:[b],r:10},{b:/(fr|rf|f)'''/,e:/'''/,c:[b,c]},{b:/(fr|rf|f)"""/,e:/"""/,c:[b,c]},{b:/(u|r|ur)'/,e:/'/,r:10},{b:/(u|r|ur)"/,e:/"/,r:10},{b:/(b|br)'/,e:/'/},{b:/(b|br)"/,e:/"/},{b:/(fr|rf|f)'/,e:/'/,c:[c]},{b:/(fr|rf|f)"/,e:/"/,c:[c]},e.ASM,e.QSM]},s={cN:"number",r:0,v:[{b:e.BNR+"[lLjJ]?"},{b:"\\b(0o[0-7]+)[lLjJ]?"},{b:e.CNR+"[lLjJ]?"}]},i={cN:"params",b:/\(/,e:/\)/,c:["self",b,s,a]};return c.c=[a,s,b],{aliases:["py","gyp"],k:r,i:/(<\/|->|\?)|=>/,c:[b,s,a,e.HCM,{v:[{cN:"function",bK:"def"},{cN:"class",bK:"class"}],e:/:/,i:/[${=;\n,]/,c:[e.UTM,i,{b:/->/,eW:!0,k:"None"}]},{cN:"meta",b:/^[\t ]*@/,e:/$/},{b:/\b(print|exec)\(/}]}});hljs.registerLanguage("css",function(e){var c="[a-zA-Z-][a-zA-Z0-9_-]*",t={b:/[A-Z\_\.\-]+\s*:/,rB:!0,e:";",eW:!0,c:[{cN:"attribute",b:/\S/,e:":",eE:!0,starts:{eW:!0,eE:!0,c:[{b:/[\w-]+\(/,rB:!0,c:[{cN:"built_in",b:/[\w-]+/},{b:/\(/,e:/\)/,c:[e.ASM,e.QSM]}]},e.CSSNM,e.QSM,e.ASM,e.CBCM,{cN:"number",b:"#[0-9A-Fa-f]+"},{cN:"meta",b:"!important"}]}}]};return{cI:!0,i:/[=\/|'\$]/,c:[e.CBCM,{cN:"selector-id",b:/#[A-Za-z0-9_-]+/},{cN:"selector-class",b:/\.[A-Za-z0-9_-]+/},{cN:"selector-attr",b:/\[/,e:/\]/,i:"$"},{cN:"selector-pseudo",b:/:(:)?[a-zA-Z0-9\_\-\+\(\)"'.]+/},{b:"@(font-face|page)",l:"[a-z-]+",k:"font-face page"},{b:"@",e:"[{;]",i:/:/,c:[{cN:"keyword",b:/\w+/},{b:/\s/,eW:!0,eE:!0,r:0,c:[e.ASM,e.QSM,e.CSSNM]}]},{cN:"selector-tag",b:c,r:0},{b:"{",e:"}",i:/\S/,c:[e.CBCM,t]}]}});hljs.registerLanguage("http",function(e){var t="HTTP/[0-9\\.]+";return{aliases:["https"],i:"\\S",c:[{b:"^"+t,e:"$",c:[{cN:"number",b:"\\b\\d{3}\\b"}]},{b:"^[A-Z]+ (.*?) "+t+"$",rB:!0,e:"$",c:[{cN:"string",b:" ",e:" ",eB:!0,eE:!0},{b:t},{cN:"keyword",b:"[A-Z]+"}]},{cN:"attribute",b:"^\\w",e:": ",eE:!0,i:"\\n|\\s|=",starts:{e:"$",r:0}},{b:"\\n\\n",starts:{sL:[],eW:!0}}]}});hljs.registerLanguage("shell",function(s){return{aliases:["console"],c:[{cN:"meta",b:"^\\s{0,3}[\\w\\d\\[\\]()@-]*[>%$#]",starts:{e:"$",sL:"bash"}}]}});hljs.registerLanguage("json",function(e){var i={literal:"true false null"},n=[e.QSM,e.CNM],r={e:",",eW:!0,eE:!0,c:n,k:i},t={b:"{",e:"}",c:[{cN:"attr",b:/"/,e:/"/,c:[e.BE],i:"\\n"},e.inherit(r,{b:/:/})],i:"\\S"},c={b:"\\[",e:"\\]",c:[e.inherit(r)],i:"\\S"};return n.splice(n.length,0,t,c),{c:n,k:i,i:"\\S"}});hljs.registerLanguage("ini",function(e){var b={cN:"string",c:[e.BE],v:[{b:"'''",e:"'''",r:10},{b:'"""',e:'"""',r:10},{b:'"',e:'"'},{b:"'",e:"'"}]};return{aliases:["toml"],cI:!0,i:/\S/,c:[e.C(";","$"),e.HCM,{cN:"section",b:/^\s*\[+/,e:/\]+/},{b:/^[a-z0-9\[\]_-]+\s*=\s*/,e:"$",rB:!0,c:[{cN:"attr",b:/[a-z0-9\[\]_-]+/},{b:/=/,eW:!0,r:0,c:[{cN:"literal",b:/\bon|off|true|false|yes|no\b/},{cN:"variable",v:[{b:/\$[\w\d"][\w\d_]*/},{b:/\$\{(.*?)}/}]},b,{cN:"number",b:/([\+\-]+)?[\d]+_[\d_]+/},e.NM]}]}]}});hljs.registerLanguage("coffeescript",function(e){var c={keyword:"in if for while finally new do return else break catch instanceof throw try this switch continue typeof delete debugger super yield import export from as default await then unless until loop of by when and or is isnt not",literal:"true false null undefined yes no on off",built_in:"npm require console print module global window document"},n="[A-Za-z$_][0-9A-Za-z$_]*",r={cN:"subst",b:/#\{/,e:/}/,k:c},i=[e.BNM,e.inherit(e.CNM,{starts:{e:"(\\s*/)?",r:0}}),{cN:"string",v:[{b:/'''/,e:/'''/,c:[e.BE]},{b:/'/,e:/'/,c:[e.BE]},{b:/"""/,e:/"""/,c:[e.BE,r]},{b:/"/,e:/"/,c:[e.BE,r]}]},{cN:"regexp",v:[{b:"///",e:"///",c:[r,e.HCM]},{b:"//[gim]*",r:0},{b:/\/(?![ *])(\\\/|.)*?\/[gim]*(?=\W|$)/}]},{b:"@"+n},{sL:"javascript",eB:!0,eE:!0,v:[{b:"```",e:"```"},{b:"`",e:"`"}]}];r.c=i;var s=e.inherit(e.TM,{b:n}),t="(\\(.*\\))?\\s*\\B[-=]>",o={cN:"params",b:"\\([^\\(]",rB:!0,c:[{b:/\(/,e:/\)/,k:c,c:["self"].concat(i)}]};return{aliases:["coffee","cson","iced"],k:c,i:/\/\*/,c:i.concat([e.C("###","###"),e.HCM,{cN:"function",b:"^\\s*"+n+"\\s*=\\s*"+t,e:"[-=]>",rB:!0,c:[s,o]},{b:/[:\(,=]\s*/,r:0,c:[{cN:"function",b:t,e:"[-=]>",rB:!0,c:[o]}]},{cN:"class",bK:"class",e:"$",i:/[:="\[\]]/,c:[{bK:"extends",eW:!0,i:/[:="\[\]]/,c:[s]},s]},{b:n+":",e:":",rB:!0,rE:!0,r:0}])}});hljs.registerLanguage("nginx",function(e){var r={cN:"variable",v:[{b:/\$\d+/},{b:/\$\{/,e:/}/},{b:"[\\$\\@]"+e.UIR}]},b={eW:!0,l:"[a-z/_]+",k:{literal:"on off yes no true false none blocked debug info notice warn error crit select break last permanent redirect kqueue rtsig epoll poll /dev/poll"},r:0,i:"=>",c:[e.HCM,{cN:"string",c:[e.BE,r],v:[{b:/"/,e:/"/},{b:/'/,e:/'/}]},{b:"([a-z]+):/",e:"\\s",eW:!0,eE:!0,c:[r]},{cN:"regexp",c:[e.BE,r],v:[{b:"\\s\\^",e:"\\s|{|;",rE:!0},{b:"~\\*?\\s+",e:"\\s|{|;",rE:!0},{b:"\\*(\\.[a-z\\-]+)+"},{b:"([a-z\\-]+\\.)+\\*"}]},{cN:"number",b:"\\b\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}(:\\d{1,5})?\\b"},{cN:"number",b:"\\b\\d+[kKmMgGdshdwy]*\\b",r:0},r]};return{aliases:["nginxconf"],c:[e.HCM,{b:e.UIR+"\\s+{",rB:!0,e:"{",c:[{cN:"section",b:e.UIR}],r:0},{b:e.UIR+"\\s",e:";|{",rB:!0,c:[{cN:"attribute",b:e.UIR,starts:b}],r:0}],i:"[^\\s\\}]"}});hljs.registerLanguage("javascript",function(e){var r="[A-Za-z$_][0-9A-Za-z$_]*",t={keyword:"in of if for while finally var new function do return void else break catch instanceof with throw case default try this switch continue typeof delete let yield const export super debugger as async await static import from as",literal:"true false null undefined NaN Infinity",built_in:"eval isFinite isNaN parseFloat parseInt decodeURI decodeURIComponent encodeURI encodeURIComponent escape unescape Object Function Boolean Error EvalError InternalError RangeError ReferenceError StopIteration SyntaxError TypeError URIError Number Math Date String RegExp Array Float32Array Float64Array Int16Array Int32Array Int8Array Uint16Array Uint32Array Uint8Array Uint8ClampedArray ArrayBuffer DataView JSON Intl arguments require module console window document Symbol Set Map WeakSet WeakMap Proxy Reflect Promise"},a={cN:"number",v:[{b:"\\b(0[bB][01]+)"},{b:"\\b(0[oO][0-7]+)"},{b:e.CNR}],r:0},n={cN:"subst",b:"\\$\\{",e:"\\}",k:t,c:[]},c={cN:"string",b:"`",e:"`",c:[e.BE,n]};n.c=[e.ASM,e.QSM,c,a,e.RM];var s=n.c.concat([e.CBCM,e.CLCM]);return{aliases:["js","jsx"],k:t,c:[{cN:"meta",r:10,b:/^\s*['"]use (strict|asm)['"]/},{cN:"meta",b:/^#!/,e:/$/},e.ASM,e.QSM,c,e.CLCM,e.CBCM,a,{b:/[{,]\s*/,r:0,c:[{b:r+"\\s*:",rB:!0,r:0,c:[{cN:"attr",b:r,r:0}]}]},{b:"("+e.RSR+"|\\b(case|return|throw)\\b)\\s*",k:"return throw case",c:[e.CLCM,e.CBCM,e.RM,{cN:"function",b:"(\\(.*?\\)|"+r+")\\s*=>",rB:!0,e:"\\s*=>",c:[{cN:"params",v:[{b:r},{b:/\(\s*\)/},{b:/\(/,e:/\)/,eB:!0,eE:!0,k:t,c:s}]}]},{b://,sL:"xml",c:[{b:/<\w+\s*\/>/,skip:!0},{b:/<\w+/,e:/(\/\w+|\w+\/)>/,skip:!0,c:[{b:/<\w+\s*\/>/,skip:!0},"self"]}]}],r:0},{cN:"function",bK:"function",e:/\{/,eE:!0,c:[e.inherit(e.TM,{b:r}),{cN:"params",b:/\(/,e:/\)/,eB:!0,eE:!0,c:s}],i:/\[|%/},{b:/\$[(.]/},e.METHOD_GUARD,{cN:"class",bK:"class",e:/[{;=]/,eE:!0,i:/[:"\[\]]/,c:[{bK:"extends"},e.UTM]},{bK:"constructor",e:/\{/,eE:!0}],i:/#(?!!)/}});hljs.registerLanguage("apache",function(e){var r={cN:"number",b:"[\\$%]\\d+"};return{aliases:["apacheconf"],cI:!0,c:[e.HCM,{cN:"section",b:""},{cN:"attribute",b:/\w+/,r:0,k:{nomarkup:"order deny allow setenv rewriterule rewriteengine rewritecond documentroot sethandler errordocument loadmodule options header listen serverroot servername"},starts:{e:/$/,r:0,k:{literal:"on off all"},c:[{cN:"meta",b:"\\s\\[",e:"\\]$"},{cN:"variable",b:"[\\$%]\\{",e:"\\}",c:["self",r]},r,e.QSM]}}],i:/\S/}});hljs.registerLanguage("makefile",function(e){var i={cN:"variable",v:[{b:"\\$\\("+e.UIR+"\\)",c:[e.BE]},{b:/\$[@%/},t={cN:"string",c:[e.BE,i],v:[{b:'b"',e:'"'},{b:"b'",e:"'"},e.inherit(e.ASM,{i:null}),e.inherit(e.QSM,{i:null})]},a={v:[e.BNM,e.CNM]};return{aliases:["php3","php4","php5","php6"],cI:!0,k:"and include_once list abstract global private echo interface as static endswitch array null if endwhile or const for endforeach self var while isset public protected exit foreach throw elseif include __FILE__ empty require_once do xor return parent clone use __CLASS__ __LINE__ else break print eval new catch __METHOD__ case exception default die require __FUNCTION__ enddeclare final try switch continue endfor endif declare unset true false trait goto instanceof insteadof __DIR__ __NAMESPACE__ yield finally",c:[e.HCM,e.C("//","$",{c:[i]}),e.C("/\\*","\\*/",{c:[{cN:"doctag",b:"@[A-Za-z]+"}]}),e.C("__halt_compiler.+?;",!1,{eW:!0,k:"__halt_compiler",l:e.UIR}),{cN:"string",b:/<<<['"]?\w+['"]?$/,e:/^\w+;?$/,c:[e.BE,{cN:"subst",v:[{b:/\$\w+/},{b:/\{\$/,e:/\}/}]}]},i,{cN:"keyword",b:/\$this\b/},c,{b:/(::|->)+[a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*/},{cN:"function",bK:"function",e:/[;{]/,eE:!0,i:"\\$|\\[|%",c:[e.UTM,{cN:"params",b:"\\(",e:"\\)",c:["self",c,e.CBCM,t,a]}]},{cN:"class",bK:"class interface",e:"{",eE:!0,i:/[:\(\$"]/,c:[{bK:"extends implements"},e.UTM]},{bK:"namespace",e:";",i:/[\.']/,c:[e.UTM]},{bK:"use",e:";",c:[e.UTM]},{b:"=>"},t,a]}});hljs.registerLanguage("perl",function(e){var t="getpwent getservent quotemeta msgrcv scalar kill dbmclose undef lc ma syswrite tr send umask sysopen shmwrite vec qx utime local oct semctl localtime readpipe do return format read sprintf dbmopen pop getpgrp not getpwnam rewinddir qqfileno qw endprotoent wait sethostent bless s|0 opendir continue each sleep endgrent shutdown dump chomp connect getsockname die socketpair close flock exists index shmgetsub for endpwent redo lstat msgctl setpgrp abs exit select print ref gethostbyaddr unshift fcntl syscall goto getnetbyaddr join gmtime symlink semget splice x|0 getpeername recv log setsockopt cos last reverse gethostbyname getgrnam study formline endhostent times chop length gethostent getnetent pack getprotoent getservbyname rand mkdir pos chmod y|0 substr endnetent printf next open msgsnd readdir use unlink getsockopt getpriority rindex wantarray hex system getservbyport endservent int chr untie rmdir prototype tell listen fork shmread ucfirst setprotoent else sysseek link getgrgid shmctl waitpid unpack getnetbyname reset chdir grep split require caller lcfirst until warn while values shift telldir getpwuid my getprotobynumber delete and sort uc defined srand accept package seekdir getprotobyname semop our rename seek if q|0 chroot sysread setpwent no crypt getc chown sqrt write setnetent setpriority foreach tie sin msgget map stat getlogin unless elsif truncate exec keys glob tied closedirioctl socket readlink eval xor readline binmode setservent eof ord bind alarm pipe atan2 getgrent exp time push setgrent gt lt or ne m|0 break given say state when",r={cN:"subst",b:"[$@]\\{",e:"\\}",k:t},s={b:"->{",e:"}"},n={v:[{b:/\$\d/},{b:/[\$%@](\^\w\b|#\w+(::\w+)*|{\w+}|\w+(::\w*)*)/},{b:/[\$%@][^\s\w{]/,r:0}]},i=[e.BE,r,n],o=[n,e.HCM,e.C("^\\=\\w","\\=cut",{eW:!0}),s,{cN:"string",c:i,v:[{b:"q[qwxr]?\\s*\\(",e:"\\)",r:5},{b:"q[qwxr]?\\s*\\[",e:"\\]",r:5},{b:"q[qwxr]?\\s*\\{",e:"\\}",r:5},{b:"q[qwxr]?\\s*\\|",e:"\\|",r:5},{b:"q[qwxr]?\\s*\\<",e:"\\>",r:5},{b:"qw\\s+q",e:"q",r:5},{b:"'",e:"'",c:[e.BE]},{b:'"',e:'"'},{b:"`",e:"`",c:[e.BE]},{b:"{\\w+}",c:[],r:0},{b:"-?\\w+\\s*\\=\\>",c:[],r:0}]},{cN:"number",b:"(\\b0[0-7_]+)|(\\b0x[0-9a-fA-F_]+)|(\\b[1-9][0-9_]*(\\.[0-9_]+)?)|[0_]\\b",r:0},{b:"(\\/\\/|"+e.RSR+"|\\b(split|return|print|reverse|grep)\\b)\\s*",k:"split return print reverse grep",r:0,c:[e.HCM,{cN:"regexp",b:"(s|tr|y)/(\\\\.|[^/])*/(\\\\.|[^/])*/[a-z]*",r:10},{cN:"regexp",b:"(m|qr)?/",e:"/[a-z]*",c:[e.BE],r:0}]},{cN:"function",bK:"sub",e:"(\\s*\\(.*?\\))?[;{]",eE:!0,r:5,c:[e.TM]},{b:"-\\w\\b",r:0},{b:"^__DATA__$",e:"^__END__$",sL:"mojolicious",c:[{b:"^@@.*",e:"$",cN:"comment"}]}];return r.c=o,s.c=o,{aliases:["pl","pm"],l:/[\w\.]+/,k:t,c:o}});hljs.registerLanguage("objectivec",function(e){var t={cN:"built_in",b:"\\b(AV|CA|CF|CG|CI|CL|CM|CN|CT|MK|MP|MTK|MTL|NS|SCN|SK|UI|WK|XC)\\w+"},_={keyword:"int float while char export sizeof typedef const struct for union unsigned long volatile static bool mutable if do return goto void enum else break extern asm case short default double register explicit signed typename this switch continue wchar_t inline readonly assign readwrite self @synchronized id typeof nonatomic super unichar IBOutlet IBAction strong weak copy in out inout bycopy byref oneway __strong __weak __block __autoreleasing @private @protected @public @try @property @end @throw @catch @finally @autoreleasepool @synthesize @dynamic @selector @optional @required @encode @package @import @defs @compatibility_alias __bridge __bridge_transfer __bridge_retained __bridge_retain __covariant __contravariant __kindof _Nonnull _Nullable _Null_unspecified __FUNCTION__ __PRETTY_FUNCTION__ __attribute__ getter setter retain unsafe_unretained nonnull nullable null_unspecified null_resettable class instancetype NS_DESIGNATED_INITIALIZER NS_UNAVAILABLE NS_REQUIRES_SUPER NS_RETURNS_INNER_POINTER NS_INLINE NS_AVAILABLE NS_DEPRECATED NS_ENUM NS_OPTIONS NS_SWIFT_UNAVAILABLE NS_ASSUME_NONNULL_BEGIN NS_ASSUME_NONNULL_END NS_REFINED_FOR_SWIFT NS_SWIFT_NAME NS_SWIFT_NOTHROW NS_DURING NS_HANDLER NS_ENDHANDLER NS_VALUERETURN NS_VOIDRETURN",literal:"false true FALSE TRUE nil YES NO NULL",built_in:"BOOL dispatch_once_t dispatch_queue_t dispatch_sync dispatch_async dispatch_once"},i=/[a-zA-Z@][a-zA-Z0-9_]*/,n="@interface @class @protocol @implementation";return{aliases:["mm","objc","obj-c"],k:_,l:i,i:""}]}]},{cN:"class",b:"("+n.split(" ").join("|")+")\\b",e:"({|$)",eE:!0,k:n,l:i,c:[e.UTM]},{b:"\\."+e.UIR,r:0}]}});hljs.registerLanguage("ruby",function(e){var b="[a-zA-Z_]\\w*[!?=]?|[-+~]\\@|<<|>>|=~|===?|<=>|[<>]=?|\\*\\*|[-/+%^&*~`|]|\\[\\]=?",r={keyword:"and then defined module in return redo if BEGIN retry end for self when next until do begin unless END rescue else break undef not super class case require yield alias while ensure elsif or include attr_reader attr_writer attr_accessor",literal:"true false nil"},c={cN:"doctag",b:"@[A-Za-z]+"},a={b:"#<",e:">"},s=[e.C("#","$",{c:[c]}),e.C("^\\=begin","^\\=end",{c:[c],r:10}),e.C("^__END__","\\n$")],n={cN:"subst",b:"#\\{",e:"}",k:r},t={cN:"string",c:[e.BE,n],v:[{b:/'/,e:/'/},{b:/"/,e:/"/},{b:/`/,e:/`/},{b:"%[qQwWx]?\\(",e:"\\)"},{b:"%[qQwWx]?\\[",e:"\\]"},{b:"%[qQwWx]?{",e:"}"},{b:"%[qQwWx]?<",e:">"},{b:"%[qQwWx]?/",e:"/"},{b:"%[qQwWx]?%",e:"%"},{b:"%[qQwWx]?-",e:"-"},{b:"%[qQwWx]?\\|",e:"\\|"},{b:/\B\?(\\\d{1,3}|\\x[A-Fa-f0-9]{1,2}|\\u[A-Fa-f0-9]{4}|\\?\S)\b/},{b:/<<(-?)\w+$/,e:/^\s*\w+$/}]},i={cN:"params",b:"\\(",e:"\\)",endsParent:!0,k:r},d=[t,a,{cN:"class",bK:"class module",e:"$|;",i:/=/,c:[e.inherit(e.TM,{b:"[A-Za-z_]\\w*(::\\w+)*(\\?|\\!)?"}),{b:"<\\s*",c:[{b:"("+e.IR+"::)?"+e.IR}]}].concat(s)},{cN:"function",bK:"def",e:"$|;",c:[e.inherit(e.TM,{b:b}),i].concat(s)},{b:e.IR+"::"},{cN:"symbol",b:e.UIR+"(\\!|\\?)?:",r:0},{cN:"symbol",b:":(?!\\s)",c:[t,{b:b}],r:0},{cN:"number",b:"(\\b0[0-7_]+)|(\\b0x[0-9a-fA-F_]+)|(\\b[1-9][0-9_]*(\\.[0-9_]+)?)|[0_]\\b",r:0},{b:"(\\$\\W)|((\\$|\\@\\@?)(\\w+))"},{cN:"params",b:/\|/,e:/\|/,k:r},{b:"("+e.RSR+"|unless)\\s*",k:"unless",c:[a,{cN:"regexp",c:[e.BE,n],i:/\n/,v:[{b:"/",e:"/[a-z]*"},{b:"%r{",e:"}[a-z]*"},{b:"%r\\(",e:"\\)[a-z]*"},{b:"%r!",e:"![a-z]*"},{b:"%r\\[",e:"\\][a-z]*"}]}].concat(s),r:0}].concat(s);n.c=d,i.c=d;var l="[>?]>",o="[\\w#]+\\(\\w+\\):\\d+:\\d+>",u="(\\w+-)?\\d+\\.\\d+\\.\\d(p\\d+)?[^>]+>",w=[{b:/^\s*=>/,starts:{e:"$",c:d}},{cN:"meta",b:"^("+l+"|"+o+"|"+u+")",starts:{e:"$",c:d}}];return{aliases:["rb","gemspec","podspec","thor","irb"],k:r,i:/\/\*/,c:s.concat(w).concat(d)}});hljs.registerLanguage("yaml",function(e){var b="true false yes no null",a="^[ \\-]*",r="[a-zA-Z_][\\w\\-]*",t={cN:"attr",v:[{b:a+r+":"},{b:a+'"'+r+'":'},{b:a+"'"+r+"':"}]},c={cN:"template-variable",v:[{b:"{{",e:"}}"},{b:"%{",e:"}"}]},l={cN:"string",r:0,v:[{b:/'/,e:/'/},{b:/"/,e:/"/},{b:/\S+/}],c:[e.BE,c]};return{cI:!0,aliases:["yml","YAML","yaml"],c:[t,{cN:"meta",b:"^---s*$",r:10},{cN:"string",b:"[\\|>] *$",rE:!0,c:l.c,e:t.v[0].b},{b:"<%[%=-]?",e:"[%-]?%>",sL:"ruby",eB:!0,eE:!0,r:0},{cN:"type",b:"!!"+e.UIR},{cN:"meta",b:"&"+e.UIR+"$"},{cN:"meta",b:"\\*"+e.UIR+"$"},{cN:"bullet",b:"^ *-",r:0},e.HCM,{bK:b,k:{literal:b}},e.CNM,l]}});hljs.registerLanguage("xml",function(s){var e="[A-Za-z0-9\\._:-]+",t={eW:!0,i:/`]+/}]}]}]};return{aliases:["html","xhtml","rss","atom","xjb","xsd","xsl","plist"],cI:!0,c:[{cN:"meta",b:"",r:10,c:[{b:"\\[",e:"\\]"}]},s.C("",{r:10}),{b:"<\\!\\[CDATA\\[",e:"\\]\\]>",r:10},{b:/<\?(php)?/,e:/\?>/,sL:"php",c:[{b:"/\\*",e:"\\*/",skip:!0}]},{cN:"tag",b:"|$)",e:">",k:{name:"style"},c:[t],starts:{e:"",rE:!0,sL:["css","xml"]}},{cN:"tag",b:"|$)",e:">",k:{name:"script"},c:[t],starts:{e:"",rE:!0,sL:["actionscript","javascript","handlebars","xml"]}},{cN:"meta",v:[{b:/<\?xml/,e:/\?>/,r:10},{b:/<\?\w+/,e:/\?>/}]},{cN:"tag",b:"",c:[{cN:"name",b:/[^\/><\s]+/,r:0},t]}]}});hljs.registerLanguage("markdown",function(e){return{aliases:["md","mkdown","mkd"],c:[{cN:"section",v:[{b:"^#{1,6}",e:"$"},{b:"^.+?\\n[=-]{2,}$"}]},{b:"<",e:">",sL:"xml",r:0},{cN:"bullet",b:"^([*+-]|(\\d+\\.))\\s+"},{cN:"strong",b:"[*_]{2}.+?[*_]{2}"},{cN:"emphasis",v:[{b:"\\*.+?\\*"},{b:"_.+?_",r:0}]},{cN:"quote",b:"^>\\s+",e:"$"},{cN:"code",v:[{b:"^```w*s*$",e:"^```s*$"},{b:"`.+?`"},{b:"^( {4}| )",e:"$",r:0}]},{b:"^[-\\*]{3,}",e:"$"},{b:"\\[.+?\\][\\(\\[].*?[\\)\\]]",rB:!0,c:[{cN:"string",b:"\\[",e:"\\]",eB:!0,rE:!0,r:0},{cN:"link",b:"\\]\\(",e:"\\)",eB:!0,eE:!0},{cN:"symbol",b:"\\]\\[",e:"\\]",eB:!0,eE:!0}],r:10},{b:/^\[[^\n]+\]:/,rB:!0,c:[{cN:"symbol",b:/\[/,e:/\]/,eB:!0,eE:!0},{cN:"link",b:/:\s*/,e:/$/,eB:!0}]}]}});hljs.registerLanguage("diff",function(e){return{aliases:["patch"],c:[{cN:"meta",r:10,v:[{b:/^@@ +\-\d+,\d+ +\+\d+,\d+ +@@$/},{b:/^\*\*\* +\d+,\d+ +\*\*\*\*$/},{b:/^\-\-\- +\d+,\d+ +\-\-\-\-$/}]},{cN:"comment",v:[{b:/Index: /,e:/$/},{b:/={3,}/,e:/$/},{b:/^\-{3}/,e:/$/},{b:/^\*{3} /,e:/$/},{b:/^\+{3}/,e:/$/},{b:/\*{5}/,e:/\*{5}$/}]},{cN:"addition",b:"^\\+",e:"$"},{cN:"deletion",b:"^\\-",e:"$"},{cN:"addition",b:"^\\!",e:"$"}]}});hljs.registerLanguage("cs",function(e){var i={keyword:"abstract as base bool break byte case catch char checked const continue decimal default delegate do double enum event explicit extern finally fixed float for foreach goto if implicit in int interface internal is lock long nameof object operator out override params private protected public readonly ref sbyte sealed short sizeof stackalloc static string struct switch this try typeof uint ulong unchecked unsafe ushort using virtual void volatile while add alias ascending async await by descending dynamic equals from get global group into join let on orderby partial remove select set value var where yield",literal:"null false true"},t={cN:"string",b:'@"',e:'"',c:[{b:'""'}]},r=e.inherit(t,{i:/\n/}),a={cN:"subst",b:"{",e:"}",k:i},c=e.inherit(a,{i:/\n/}),n={cN:"string",b:/\$"/,e:'"',i:/\n/,c:[{b:"{{"},{b:"}}"},e.BE,c]},s={cN:"string",b:/\$@"/,e:'"',c:[{b:"{{"},{b:"}}"},{b:'""'},a]},o=e.inherit(s,{i:/\n/,c:[{b:"{{"},{b:"}}"},{b:'""'},c]});a.c=[s,n,t,e.ASM,e.QSM,e.CNM,e.CBCM],c.c=[o,n,r,e.ASM,e.QSM,e.CNM,e.inherit(e.CBCM,{i:/\n/})];var l={v:[s,n,t,e.ASM,e.QSM]},b=e.IR+"(<"+e.IR+"(\\s*,\\s*"+e.IR+")*>)?(\\[\\])?";return{aliases:["csharp"],k:i,i:/::/,c:[e.C("///","$",{rB:!0,c:[{cN:"doctag",v:[{b:"///",r:0},{b:""},{b:""}]}]}),e.CLCM,e.CBCM,{cN:"meta",b:"#",e:"$",k:{"meta-keyword":"if else elif endif define undef warning error line region endregion pragma checksum"}},l,e.CNM,{bK:"class interface",e:/[{;=]/,i:/[^\s:]/,c:[e.TM,e.CLCM,e.CBCM]},{bK:"namespace",e:/[{;=]/,i:/[^\s:]/,c:[e.inherit(e.TM,{b:"[a-zA-Z](\\.?\\w)*"}),e.CLCM,e.CBCM]},{cN:"meta",b:"^\\s*\\[",eB:!0,e:"\\]",eE:!0,c:[{cN:"meta-string",b:/"/,e:/"/}]},{bK:"new return throw await else",r:0},{cN:"function",b:"("+b+"\\s+)+"+e.IR+"\\s*\\(",rB:!0,e:/[{;=]/,eE:!0,k:i,c:[{b:e.IR+"\\s*\\(",rB:!0,c:[e.TM],r:0},{cN:"params",b:/\(/,e:/\)/,eB:!0,eE:!0,k:i,r:0,c:[l,e.CNM,e.CBCM]},e.CLCM,e.CBCM]}]}});hljs.registerLanguage("sql",function(e){var t=e.C("--","$");return{cI:!0,i:/[<>{}*#]/,c:[{bK:"begin end start commit rollback savepoint lock alter create drop rename call delete do handler insert load replace select truncate update set show pragma grant merge describe use explain help declare prepare execute deallocate release unlock purge reset change stop analyze cache flush optimize repair kill install uninstall checksum restore check backup revoke comment",e:/;/,eW:!0,l:/[\w\.]+/,k:{keyword:"abort abs absolute acc acce accep accept access accessed accessible account acos action activate add addtime admin administer advanced advise aes_decrypt aes_encrypt after agent aggregate ali alia alias allocate allow alter always analyze ancillary and any anydata anydataset anyschema anytype apply archive archived archivelog are as asc ascii asin assembly assertion associate asynchronous at atan atn2 attr attri attrib attribu attribut attribute attributes audit authenticated authentication authid authors auto autoallocate autodblink autoextend automatic availability avg backup badfile basicfile before begin beginning benchmark between bfile bfile_base big bigfile bin binary_double binary_float binlog bit_and bit_count bit_length bit_or bit_xor bitmap blob_base block blocksize body both bound buffer_cache buffer_pool build bulk by byte byteordermark bytes cache caching call calling cancel capacity cascade cascaded case cast catalog category ceil ceiling chain change changed char_base char_length character_length characters characterset charindex charset charsetform charsetid check checksum checksum_agg child choose chr chunk class cleanup clear client clob clob_base clone close cluster_id cluster_probability cluster_set clustering coalesce coercibility col collate collation collect colu colum column column_value columns columns_updated comment commit compact compatibility compiled complete composite_limit compound compress compute concat concat_ws concurrent confirm conn connec connect connect_by_iscycle connect_by_isleaf connect_by_root connect_time connection consider consistent constant constraint constraints constructor container content contents context contributors controlfile conv convert convert_tz corr corr_k corr_s corresponding corruption cos cost count count_big counted covar_pop covar_samp cpu_per_call cpu_per_session crc32 create creation critical cross cube cume_dist curdate current current_date current_time current_timestamp current_user cursor curtime customdatum cycle data database databases datafile datafiles datalength date_add date_cache date_format date_sub dateadd datediff datefromparts datename datepart datetime2fromparts day day_to_second dayname dayofmonth dayofweek dayofyear days db_role_change dbtimezone ddl deallocate declare decode decompose decrement decrypt deduplicate def defa defau defaul default defaults deferred defi defin define degrees delayed delegate delete delete_all delimited demand dense_rank depth dequeue des_decrypt des_encrypt des_key_file desc descr descri describ describe descriptor deterministic diagnostics difference dimension direct_load directory disable disable_all disallow disassociate discardfile disconnect diskgroup distinct distinctrow distribute distributed div do document domain dotnet double downgrade drop dumpfile duplicate duration each edition editionable editions element ellipsis else elsif elt empty enable enable_all enclosed encode encoding encrypt end end-exec endian enforced engine engines enqueue enterprise entityescaping eomonth error errors escaped evalname evaluate event eventdata events except exception exceptions exchange exclude excluding execu execut execute exempt exists exit exp expire explain export export_set extended extent external external_1 external_2 externally extract failed failed_login_attempts failover failure far fast feature_set feature_value fetch field fields file file_name_convert filesystem_like_logging final finish first first_value fixed flash_cache flashback floor flush following follows for forall force form forma format found found_rows freelist freelists freepools fresh from from_base64 from_days ftp full function general generated get get_format get_lock getdate getutcdate global global_name globally go goto grant grants greatest group group_concat group_id grouping grouping_id groups gtid_subtract guarantee guard handler hash hashkeys having hea head headi headin heading heap help hex hierarchy high high_priority hosts hour http id ident_current ident_incr ident_seed identified identity idle_time if ifnull ignore iif ilike ilm immediate import in include including increment index indexes indexing indextype indicator indices inet6_aton inet6_ntoa inet_aton inet_ntoa infile initial initialized initially initrans inmemory inner innodb input insert install instance instantiable instr interface interleaved intersect into invalidate invisible is is_free_lock is_ipv4 is_ipv4_compat is_not is_not_null is_used_lock isdate isnull isolation iterate java join json json_exists keep keep_duplicates key keys kill language large last last_day last_insert_id last_value lax lcase lead leading least leaves left len lenght length less level levels library like like2 like4 likec limit lines link list listagg little ln load load_file lob lobs local localtime localtimestamp locate locator lock locked log log10 log2 logfile logfiles logging logical logical_reads_per_call logoff logon logs long loop low low_priority lower lpad lrtrim ltrim main make_set makedate maketime managed management manual map mapping mask master master_pos_wait match matched materialized max maxextents maximize maxinstances maxlen maxlogfiles maxloghistory maxlogmembers maxsize maxtrans md5 measures median medium member memcompress memory merge microsecond mid migration min minextents minimum mining minus minute minvalue missing mod mode model modification modify module monitoring month months mount move movement multiset mutex name name_const names nan national native natural nav nchar nclob nested never new newline next nextval no no_write_to_binlog noarchivelog noaudit nobadfile nocheck nocompress nocopy nocycle nodelay nodiscardfile noentityescaping noguarantee nokeep nologfile nomapping nomaxvalue nominimize nominvalue nomonitoring none noneditionable nonschema noorder nopr nopro noprom nopromp noprompt norely noresetlogs noreverse normal norowdependencies noschemacheck noswitch not nothing notice notrim novalidate now nowait nth_value nullif nulls num numb numbe nvarchar nvarchar2 object ocicoll ocidate ocidatetime ociduration ociinterval ociloblocator ocinumber ociref ocirefcursor ocirowid ocistring ocitype oct octet_length of off offline offset oid oidindex old on online only opaque open operations operator optimal optimize option optionally or oracle oracle_date oradata ord ordaudio orddicom orddoc order ordimage ordinality ordvideo organization orlany orlvary out outer outfile outline output over overflow overriding package pad parallel parallel_enable parameters parent parse partial partition partitions pascal passing password password_grace_time password_lock_time password_reuse_max password_reuse_time password_verify_function patch path patindex pctincrease pctthreshold pctused pctversion percent percent_rank percentile_cont percentile_disc performance period period_add period_diff permanent physical pi pipe pipelined pivot pluggable plugin policy position post_transaction pow power pragma prebuilt precedes preceding precision prediction prediction_cost prediction_details prediction_probability prediction_set prepare present preserve prior priority private private_sga privileges procedural procedure procedure_analyze processlist profiles project prompt protection public publishingservername purge quarter query quick quiesce quota quotename radians raise rand range rank raw read reads readsize rebuild record records recover recovery recursive recycle redo reduced ref reference referenced references referencing refresh regexp_like register regr_avgx regr_avgy regr_count regr_intercept regr_r2 regr_slope regr_sxx regr_sxy reject rekey relational relative relaylog release release_lock relies_on relocate rely rem remainder rename repair repeat replace replicate replication required reset resetlogs resize resource respect restore restricted result result_cache resumable resume retention return returning returns reuse reverse revoke right rlike role roles rollback rolling rollup round row row_count rowdependencies rowid rownum rows rtrim rules safe salt sample save savepoint sb1 sb2 sb4 scan schema schemacheck scn scope scroll sdo_georaster sdo_topo_geometry search sec_to_time second section securefile security seed segment select self sequence sequential serializable server servererror session session_user sessions_per_user set sets settings sha sha1 sha2 share shared shared_pool short show shrink shutdown si_averagecolor si_colorhistogram si_featurelist si_positionalcolor si_stillimage si_texture siblings sid sign sin size size_t sizes skip slave sleep smalldatetimefromparts smallfile snapshot some soname sort soundex source space sparse spfile split sql sql_big_result sql_buffer_result sql_cache sql_calc_found_rows sql_small_result sql_variant_property sqlcode sqldata sqlerror sqlname sqlstate sqrt square standalone standby start starting startup statement static statistics stats_binomial_test stats_crosstab stats_ks_test stats_mode stats_mw_test stats_one_way_anova stats_t_test_ stats_t_test_indep stats_t_test_one stats_t_test_paired stats_wsr_test status std stddev stddev_pop stddev_samp stdev stop storage store stored str str_to_date straight_join strcmp strict string struct stuff style subdate subpartition subpartitions substitutable substr substring subtime subtring_index subtype success sum suspend switch switchoffset switchover sync synchronous synonym sys sys_xmlagg sysasm sysaux sysdate sysdatetimeoffset sysdba sysoper system system_user sysutcdatetime table tables tablespace tan tdo template temporary terminated tertiary_weights test than then thread through tier ties time time_format time_zone timediff timefromparts timeout timestamp timestampadd timestampdiff timezone_abbr timezone_minute timezone_region to to_base64 to_date to_days to_seconds todatetimeoffset trace tracking transaction transactional translate translation treat trigger trigger_nestlevel triggers trim truncate try_cast try_convert try_parse type ub1 ub2 ub4 ucase unarchived unbounded uncompress under undo unhex unicode uniform uninstall union unique unix_timestamp unknown unlimited unlock unpivot unrecoverable unsafe unsigned until untrusted unusable unused update updated upgrade upped upper upsert url urowid usable usage use use_stored_outlines user user_data user_resources users using utc_date utc_timestamp uuid uuid_short validate validate_password_strength validation valist value values var var_samp varcharc vari varia variab variabl variable variables variance varp varraw varrawc varray verify version versions view virtual visible void wait wallet warning warnings week weekday weekofyear wellformed when whene whenev wheneve whenever where while whitespace with within without work wrapped xdb xml xmlagg xmlattributes xmlcast xmlcolattval xmlelement xmlexists xmlforest xmlindex xmlnamespaces xmlpi xmlquery xmlroot xmlschema xmlserialize xmltable xmltype xor year year_to_month years yearweek",literal:"true false null",built_in:"array bigint binary bit blob boolean char character date dec decimal float int int8 integer interval number numeric real record serial serial8 smallint text varchar varying void"},c:[{cN:"string",b:"'",e:"'",c:[e.BE,{b:"''"}]},{cN:"string",b:'"',e:'"',c:[e.BE,{b:'""'}]},{cN:"string",b:"`",e:"`",c:[e.BE]},e.CNM,e.CBCM,t]},e.CBCM,t]}});hljs.registerLanguage("cpp",function(t){var e={cN:"keyword",b:"\\b[a-z\\d_]*_t\\b"},r={cN:"string",v:[{b:'(u8?|U)?L?"',e:'"',i:"\\n",c:[t.BE]},{b:'(u8?|U)?R"',e:'"',c:[t.BE]},{b:"'\\\\?.",e:"'",i:"."}]},s={cN:"number",v:[{b:"\\b(0b[01']+)"},{b:"(-?)\\b([\\d']+(\\.[\\d']*)?|\\.[\\d']+)(u|U|l|L|ul|UL|f|F|b|B)"},{b:"(-?)(\\b0[xX][a-fA-F0-9']+|(\\b[\\d']+(\\.[\\d']*)?|\\.[\\d']+)([eE][-+]?[\\d']+)?)"}],r:0},i={cN:"meta",b:/#\s*[a-z]+\b/,e:/$/,k:{"meta-keyword":"if else elif endif define undef warning error line pragma ifdef ifndef include"},c:[{b:/\\\n/,r:0},t.inherit(r,{cN:"meta-string"}),{cN:"meta-string",b:/<[^\n>]*>/,e:/$/,i:"\\n"},t.CLCM,t.CBCM]},a=t.IR+"\\s*\\(",c={keyword:"int float while private char catch import module export virtual operator sizeof dynamic_cast|10 typedef const_cast|10 const for static_cast|10 union namespace unsigned long volatile static protected bool template mutable if public friend do goto auto void enum else break extern using asm case typeid short reinterpret_cast|10 default double register explicit signed typename try this switch continue inline delete alignof constexpr decltype noexcept static_assert thread_local restrict _Bool complex _Complex _Imaginary atomic_bool atomic_char atomic_schar atomic_uchar atomic_short atomic_ushort atomic_int atomic_uint atomic_long atomic_ulong atomic_llong atomic_ullong new throw return and or not",built_in:"std string cin cout cerr clog stdin stdout stderr stringstream istringstream ostringstream auto_ptr deque list queue stack vector map set bitset multiset multimap unordered_set unordered_map unordered_multiset unordered_multimap array shared_ptr abort abs acos asin atan2 atan calloc ceil cosh cos exit exp fabs floor fmod fprintf fputs free frexp fscanf isalnum isalpha iscntrl isdigit isgraph islower isprint ispunct isspace isupper isxdigit tolower toupper labs ldexp log10 log malloc realloc memchr memcmp memcpy memset modf pow printf putchar puts scanf sinh sin snprintf sprintf sqrt sscanf strcat strchr strcmp strcpy strcspn strlen strncat strncmp strncpy strpbrk strrchr strspn strstr tanh tan vfprintf vprintf vsprintf endl initializer_list unique_ptr",literal:"true false nullptr NULL"},n=[e,t.CLCM,t.CBCM,s,r];return{aliases:["c","cc","h","c++","h++","hpp"],k:c,i:"",k:c,c:["self",e]},{b:t.IR+"::",k:c},{v:[{b:/=/,e:/;/},{b:/\(/,e:/\)/},{bK:"new throw return else",e:/;/}],k:c,c:n.concat([{b:/\(/,e:/\)/,k:c,c:n.concat(["self"]),r:0}]),r:0},{cN:"function",b:"("+t.IR+"[\\*&\\s]+)+"+a,rB:!0,e:/[{;=]/,eE:!0,k:c,i:/[^\w\s\*&]/,c:[{b:a,rB:!0,c:[t.TM],r:0},{cN:"params",b:/\(/,e:/\)/,k:c,r:0,c:[t.CLCM,t.CBCM,r,s,e]},t.CLCM,t.CBCM,i]},{cN:"class",bK:"class struct",e:/[{;:]/,c:[{b://,c:["self"]},t.TM]}]),exports:{preprocessor:i,strings:r,k:c}}}); \ No newline at end of file diff --git a/docs/assets/style.css b/docs/assets/style.css deleted file mode 100644 index 7e75a20..0000000 --- a/docs/assets/style.css +++ /dev/null @@ -1,1270 +0,0 @@ - - @import url(https://fonts.googleapis.com/css?family=Source+Sans+Pro:400,400italic,600,600italic,300italic,300|Source+Serif+Pro|Source+Code+Pro:400,300,500&subset=latin,latin-ext); - - .markdown-body { - font-family: -apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif; - font-size: 16px; - line-height: 1.5; - word-wrap: break-word; - background-color: #0A0B14; - } - - .markdown-body:after, - .markdown-body:before { - display: table; - content: "" - } - - .markdown-body:after { - clear: both - } - - .markdown-body>:first-child { - margin-top: 0 !important - } - - .markdown-body>:last-child { - margin-bottom: 0 !important - } - - .markdown-body a:not([href]) { - color: inherit; - text-decoration: none - } - - .markdown-body .absent { - color: #c00 - } - - .markdown-body .anchor { - float: left; - padding-right: 4px; - margin-left: -20px; - line-height: 1 - } - - .markdown-body .anchor:focus { - outline: none - } - - .markdown-body blockquote, - .markdown-body dl, - .markdown-body ol, - .markdown-body p, - .markdown-body pre, - .markdown-body table, - .markdown-body ul { - margin-top: 0; - margin-bottom: 16px - } - - .markdown-body hr { - height: .25em; - padding: 0; - margin: 24px 0; - background-color: #333; - border: 0 - } - - .markdown-body blockquote { - padding: 0 1em; - color: #777; - border-left: .25em solid #ddd - } - - .night .markdown-body blockquote { - color: #bcbcbc - } - - .markdown-body blockquote>:first-child { - margin-top: 0 - } - - .markdown-body blockquote>:last-child { - margin-bottom: 0 - } - - .markdown-body .loweralpha { - list-style-type: lower-alpha - } - - .markdown-body h1, - .markdown-body h2, - .markdown-body h3, - .markdown-body h4, - .markdown-body h5, - .markdown-body h6 { - margin-top: 24px; - margin-bottom: 16px; - font-weight: 600; - line-height: 1.25 - } - - .night .markdown-body h1, - .night .markdown-body h2, - .night .markdown-body h3, - .night .markdown-body h4, - .night .markdown-body h5, - .night .markdown-body h6 { - color: #ddd - } - - .markdown-body h1 .octicon-link, - .markdown-body h2 .octicon-link, - .markdown-body h3 .octicon-link, - .markdown-body h4 .octicon-link, - .markdown-body h5 .octicon-link, - .markdown-body h6 .octicon-link { - color: #fff; - vertical-align: middle; - visibility: hidden - } - - .night .markdown-body h1 .octicon-link, - .night .markdown-body h2 .octicon-link, - .night .markdown-body h3 .octicon-link, - .night .markdown-body h4 .octicon-link, - .night .markdown-body h5 .octicon-link, - .night .markdown-body h6 .octicon-link { - color: #fff - } - - .markdown-body h1:hover .anchor, - .markdown-body h2:hover .anchor, - .markdown-body h3:hover .anchor, - .markdown-body h4:hover .anchor, - .markdown-body h5:hover .anchor, - .markdown-body h6:hover .anchor { - text-decoration: none - } - - .markdown-body h1:hover .anchor .octicon-link, - .markdown-body h2:hover .anchor .octicon-link, - .markdown-body h3:hover .anchor .octicon-link, - .markdown-body h4:hover .anchor .octicon-link, - .markdown-body h5:hover .anchor .octicon-link, - .markdown-body h6:hover .anchor .octicon-link { - visibility: visible - } - - .markdown-body h1 code, - .markdown-body h1 tt, - .markdown-body h2 code, - .markdown-body h2 tt, - .markdown-body h3 code, - .markdown-body h3 tt, - .markdown-body h4 code, - .markdown-body h4 tt, - .markdown-body h5 code, - .markdown-body h5 tt, - .markdown-body h6 code, - .markdown-body h6 tt { - font-size: inherit - } - - .markdown-body h1 { - font-size: 2em - } - - .markdown-body h1, - .markdown-body h2 { - padding-bottom: .3em; - border-bottom: 1px solid #eee - } - - .markdown-body h2 { - font-size: 1.5em - } - - .markdown-body h3 { - font-size: 1.25em - } - - .markdown-body h4 { - font-size: 1em - } - - .markdown-body h5 { - font-size: .875em - } - - .markdown-body h6 { - font-size: .85em; - color: #777 - } - - .markdown-body ol, - .markdown-body ul { - padding-left: 2em - } - - .markdown-body ol.no-list, - .markdown-body ul.no-list { - padding: 0; - list-style-type: none - } - - .markdown-body ol ol, - .markdown-body ol ul, - .markdown-body ul ol, - .markdown-body ul ul { - margin-top: 0; - margin-bottom: 0 - } - - .markdown-body li>p { - margin-top: 16px - } - - .markdown-body li+li { - margin-top: .25em - } - - .markdown-body dl { - padding: 0 - } - - .markdown-body dl dt { - padding: 0; - margin-top: 16px; - font-size: 1em; - font-style: italic; - font-weight: 700 - } - - .markdown-body dl dd { - padding: 0 16px; - margin-bottom: 16px - } - - .markdown-body table { - display: block; - width: 100%; - overflow: auto; - word-break: normal; - word-break: keep-all - } - - .markdown-body table th { - font-weight: 700 - } - - .markdown-body table td, - .markdown-body table th { - padding: 6px 13px; - border: 1px solid #ddd - } - - .markdown-body table tr { - background-color: #333; - color:#fff; - border-top: 1px solid #ccc - } - - .night .markdown-body table tr { - background-color: #5f5f5f - } - - .markdown-body table tr:nth-child(2n) { - background-color: #333 - } - - .night .markdown-body table tr:nth-child(2n) { - background-color: #4f4f4f - } - - .markdown-body img { - max-width: 100%; - box-sizing: content-box; - background-color: #333 - } - - .markdown-body img[align=right] { - padding-left: 20px - } - - .markdown-body img[align=left] { - padding-right: 20px - } - - .markdown-body .emoji { - max-width: none; - vertical-align: text-top; - background-color: transparent - } - - .markdown-body span.frame { - display: block; - overflow: hidden - } - - .markdown-body span.frame>span { - display: block; - float: left; - width: auto; - padding: 7px; - margin: 13px 0 0; - overflow: hidden; - border: 1px solid #ddd - } - - .markdown-body span.frame span img { - display: block; - float: left - } - - .markdown-body span.frame span span { - display: block; - padding: 5px 0 0; - clear: both; - color: #333 - } - - .markdown-body span.align-center { - display: block; - overflow: hidden; - clear: both - } - - .markdown-body span.align-center>span { - display: block; - margin: 13px auto 0; - overflow: hidden; - text-align: center - } - - .markdown-body span.align-center span img { - margin: 0 auto; - text-align: center - } - - .markdown-body span.align-right { - display: block; - overflow: hidden; - clear: both - } - - .markdown-body span.align-right>span { - display: block; - margin: 13px 0 0; - overflow: hidden; - text-align: right - } - - .markdown-body span.align-right span img { - margin: 0; - text-align: right - } - - .markdown-body span.float-left { - display: block; - float: left; - margin-right: 13px; - overflow: hidden - } - - .markdown-body span.float-left span { - margin: 13px 0 0 - } - - .markdown-body span.float-right { - display: block; - float: right; - margin-left: 13px; - overflow: hidden - } - - .markdown-body span.float-right>span { - display: block; - margin: 13px auto 0; - overflow: hidden; - text-align: right - } - - .markdown-body code, - .markdown-body tt { - padding: 0; - padding-top: .2em; - padding-bottom: .2em; - margin: 0; - font-size: 85%; - background-color: rgba(0, 0, 0, .04); - color: #fff; - border-radius: 3px - } - - .night .markdown-body code, - .night .markdown-body tt { - color: #eee; - background-color: #333 - } - - .markdown-body code:after, - .markdown-body code:before, - .markdown-body tt:after, - .markdown-body tt:before { - letter-spacing: -.2em; - content: "\A0" - } - - .markdown-body code br, - .markdown-body tt br { - display: none - } - - .markdown-body del code { - text-decoration: inherit - } - - .markdown-body pre { - word-wrap: normal - } - - .markdown-body pre>code { - padding: 0; - margin: 0; - font-size: 100%; - word-break: normal; - white-space: pre; - background: #333; - color: #fff; - border: 0 - } - - .markdown-body .highlight { - margin-bottom: 16px - } - - .markdown-body .highlight pre { - margin-bottom: 0; - word-break: normal - } - - .markdown-body .highlight pre, - .markdown-body pre { - padding: 16px; - overflow: auto; - font-size: 85%; - line-height: 1.45; - background-color: #333; - color: #fff; - border-radius: 3px - } - - .markdown-body pre code, - .markdown-body pre tt { - display: inline; - max-width: auto; - padding: 0; - margin: 0; - color: #fff; - overflow: visible; - line-height: inherit; - word-wrap: normal; - background-color: #333; - border: 0 - } - - .markdown-body pre code:after, - .markdown-body pre code:before, - .markdown-body pre tt:after, - .markdown-body pre tt:before { - content: normal - } - - .markdown-body .csv-data td, - .markdown-body .csv-data th { - padding: 5px; - overflow: hidden; - font-size: 12px; - line-height: 1; - text-align: left; - white-space: nowrap - } - - .markdown-body .csv-data .blob-line-num { - padding: 10px 8px 9px; - text-align: right; - background: #fff; - border: 0 - } - - .markdown-body .csv-data tr { - border-top: 0 - } - - .markdown-body .csv-data th { - font-weight: 700; - background: #333; - border-top: 0 - } - - .markdown-body kbd { - display: inline-block; - padding: 3px 5px; - font-size: 11px; - line-height: 10px; - color: #fff; - vertical-align: middle; - background-color: #333; - border: 1px solid #ccc; - border-bottom-color: #bbb; - border-radius: 3px; - box-shadow: inset 0 -1px 0 #bbb - } - - .news .alert .markdown-body blockquote { - padding: 0 0 0 40px; - border: 0 none - } - - .activity-tab .news .alert .commits, - .activity-tab .news .markdown-body blockquote { - padding-left: 0 - } - - .task-list-item { - list-style-type: none - } - - .task-list-item label { - font-weight: 400 - } - - .task-list-item.enabled label { - cursor: pointer - } - - .task-list-item+.task-list-item { - margin-top: 3px - } - - .task-list-item-checkbox { - float: left; - margin: .31em 0 .2em -1.3em !important; - vertical-align: middle; - cursor: default !important - } - - .markdown-body { - font-family: -apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica Neue, Helvetica, Arial, sans-serif; - padding-top: 40px; - padding-bottom: 40px; - max-width: 940px; - overflow: visible !important - } - - .markdown-body pre { - border: inherit !important - } - - .night .markdown-body pre { - filter: invert(100%) - } - - .markdown-body code { - color: inherit !important - } - - .markdown-body pre code .wrapper { - display: -moz-inline-flex; - display: -ms-inline-flex; - display: -o-inline-flex; - display: inline-flex - } - - .markdown-body pre code .gutter { - float: left; - overflow: hidden; - -webkit-user-select: none; - user-select: none - } - - .markdown-body pre code .gutter.linenumber { - text-align: right; - position: relative; - display: inline-block; - cursor: default; - z-index: 4; - padding: 0 8px 0 0; - min-width: 20px; - box-sizing: content-box; - color: #fff !important; - border-right: 3px solid #6ce26c !important - } - - .markdown-body pre code .gutter.linenumber>span:before { - content: attr(data-linenumber) - } - - .markdown-body pre code .code { - float: left; - margin: 0 0 0 16px - } - - .markdown-body .gist .line-numbers { - border-left: none; - border-top: none; - border-bottom: none - } - - .markdown-body .gist .line-data { - border: none - } - - .markdown-body .gist table { - border-spacing: 0; - border-collapse: inherit !important - } - - .night .markdown-body .gist table tr:nth-child(2n) { - background-color: #333 - } - - .markdown-body code[data-gist-id] { - background: none; - padding: 0; - filter: invert(100%) - } - - .markdown-body code[data-gist-id]:after, - .markdown-body code[data-gist-id]:before { - content: "" - } - - .markdown-body code[data-gist-id] .blob-num { - border: unset - } - - .markdown-body code[data-gist-id] table { - overflow: unset; - margin-bottom: unset - } - - .markdown-body code[data-gist-id] table tr { - background: unset - } - - .markdown-body[dir=rtl] pre { - direction: ltr - } - - .markdown-body[dir=rtl] code { - direction: ltr; - unicode-bidi: embed - } - - .markdown-body .alert>p { - margin-bottom: 0 - } - - .markdown-body pre.abc, - .markdown-body pre.flow-chart, - .markdown-body pre.graphviz, - .markdown-body pre.mermaid, - .markdown-body pre.sequence-diagram { - text-align: center; - background-color: inherit; - border-radius: 0; - white-space: inherit - } - - .night .markdown-body pre.graphviz .graph>polygon { - fill: #333 - } - - .night .markdown-body pre.mermaid .sectionTitle, - .night .markdown-body pre.mermaid .titleText, - .night .markdown-body pre.mermaid text { - fill: #fff - } - - .markdown-body pre.abc>code, - .markdown-body pre.flow-chart>code, - .markdown-body pre.graphviz>code, - .markdown-body pre.mermaid>code, - .markdown-body pre.sequence-diagram>code { - text-align: left - } - - .markdown-body pre.abc>svg, - .markdown-body pre.flow-chart>svg, - .markdown-body pre.graphviz>svg, - .markdown-body pre.mermaid>svg, - .markdown-body pre.sequence-diagram>svg { - max-width: 100%; - height: 100% - } - - .night .markdown-body .abc path { - fill: #eee - } - - .night .markdown-body .abc path.note_selected { - fill: ##4DD0E1 - } - - .night tspan { - fill: #fefefe - } - - .night pre rect { - fill: transparent - } - - .night pre.flow-chart path, - .night pre.flow-chart rect { - stroke: #fff - } - - .markdown-body pre>code.wrap { - white-space: pre-wrap; - white-space: -moz-pre-wrap; - white-space: -pre-wrap; - white-space: -o-pre-wrap; - word-wrap: break-word - } - - .markdown-body .alert>p, - .markdown-body .alert>ul { - margin-bottom: 0 - } - - .markdown-body summary { - display: list-item - } - - .markdown-body summary:focus { - outline: none - } - - .markdown-body details summary { - cursor: pointer - } - - .markdown-body details:not([open])>:not(summary) { - display: none - } - - .markdown-body figure { - margin: 1em 40px - } - - .markdown-body img { - background-color: transparent - } - - .vimeo, - .youtube { - cursor: pointer; - display: table; - text-align: center; - background-position: 50%; - background-repeat: no-repeat; - background-size: contain; - background-color: #000; - overflow: hidden - } - - .vimeo, - .youtube { - position: relative; - width: 100% - } - - .youtube { - padding-bottom: 56.25% - } - - .vimeo img { - width: 100%; - object-fit: contain; - z-index: 0 - } - - .youtube img { - object-fit: cover; - z-index: 0 - } - - .vimeo iframe, - .youtube iframe, - .youtube img { - width: 100%; - height: 100%; - position: absolute; - top: 0; - left: 0 - } - - .vimeo iframe, - .youtube iframe { - vertical-align: middle; - z-index: 1 - } - - .vimeo .icon, - .youtube .icon { - position: absolute; - height: auto; - width: auto; - top: 50%; - left: 50%; - transform: translate(-50%, -50%); - color: #fff; - opacity: .3; - transition: opacity .2s; - z-index: 0 - } - - .vimeo:hover .icon, - .youtube:hover .icon { - opacity: .6; - transition: opacity .2s - } - - .slideshare .inner, - .speakerdeck .inner { - position: relative; - width: 100% - } - - .slideshare .inner iframe, - .speakerdeck .inner iframe { - position: absolute; - top: 0; - bottom: 0; - left: 0; - right: 0; - width: 100%; - height: 100% - } - - .MJX_Assistive_MathML { - display: none - } - - .ui-infobar { - position: relative; - z-index: 2; - max-width: 758px; - margin-top: 25px; - margin-bottom: -25px; - color: #fff - } - - .toc .invisable-node { - list-style-type: none - } - - .ui-toc { - position: fixed; - bottom: 20px; - z-index: 10000 - } - - .ui-toc-label { - opacity: .3; - background-color: #ccc; - border: none; - transition: opacity .2s - } - - .ui-toc .open .ui-toc-label { - opacity: 1; - color: #fff; - transition: opacity .2s - } - - .ui-toc-label:focus { - opacity: .3; - background-color: #ccc; - color: #777 - } - - .ui-toc-label:hover { - opacity: 1; - background-color: #ccc; - transition: opacity .2s - } - - .ui-toc-dropdown { - margin-top: 23px; - margin-bottom: 20px; - padding-left: 10px; - padding-right: 10px; - max-width: 45vw; - width: 25vw; - max-height: 70vh; - overflow: auto; - text-align: inherit - } - - .ui-toc-dropdown>.toc { - max-height: calc(70vh - 100px); - overflow: auto - } - - .ui-toc-dropdown[dir=rtl] .nav { - padding-right: 0; - letter-spacing: .0029em - } - - .ui-toc-dropdown a { - overflow: hidden; - text-overflow: ellipsis; - white-space: pre - } - - .ui-toc-dropdown .nav>li>a { - display: block; - padding: 4px 20px; - font-size: 13px; - font-weight: 500; - color: #fff - } - - .ui-toc-dropdown .nav>li:first-child:last-child>ul, - .ui-toc-dropdown .toc.expand ul { - display: block - } - - .ui-toc-dropdown .nav>li>a:focus, - .ui-toc-dropdown .nav>li>a:hover { - padding-left: 19px; - color: #777; - text-decoration: none; - background-color: transparent; - border-left: 1px solid #777 - } - - .night .ui-toc-dropdown .nav>li>a:focus, - .night .ui-toc-dropdown .nav>li>a:hover { - color: #fff; - border-left-color: #fff - } - - .ui-toc-dropdown[dir=rtl] .nav>li>a:focus, - .ui-toc-dropdown[dir=rtl] .nav>li>a:hover { - padding-right: 19px; - border-left: none; - border-right: 1px solid #777 - } - - .ui-toc-dropdown .nav>.active:focus>a, - .ui-toc-dropdown .nav>.active:hover>a, - .ui-toc-dropdown .nav>.active>a { - padding-left: 18px; - font-weight: 700; - color: #777; - background-color: transparent; - border-left: 2px solid #000 - } - - .night .ui-toc-dropdown .nav>.active:focus>a, - .night .ui-toc-dropdown .nav>.active:hover>a, - .night .ui-toc-dropdown .nav>.active>a { - color: #fff; - border-left: 2px solid #fff - } - - .ui-toc-dropdown[dir=rtl] .nav>.active:focus>a, - .ui-toc-dropdown[dir=rtl] .nav>.active:hover>a, - .ui-toc-dropdown[dir=rtl] .nav>.active>a { - padding-right: 18px; - border-left: none; - border-right: 2px solid #777 - } - - .ui-toc-dropdown .nav .nav { - display: none; - padding-bottom: 10px - } - - .ui-toc-dropdown .nav>.active>ul { - display: block - } - - .ui-toc-dropdown .nav .nav>li>a { - padding-top: 1px; - padding-bottom: 1px; - padding-left: 30px; - font-size: 12px; - font-weight: 400 - } - - .night .ui-toc-dropdown .nav>li>a { - color: #aaa - } - - .ui-toc-dropdown[dir=rtl] .nav .nav>li>a { - padding-right: 30px - } - - .ui-toc-dropdown .nav .nav>li>ul>li>a { - padding-top: 1px; - padding-bottom: 1px; - padding-left: 40px; - font-size: 12px; - font-weight: 400 - } - - .ui-toc-dropdown[dir=rtl] .nav .nav>li>ul>li>a { - padding-right: 40px - } - - .ui-toc-dropdown .nav .nav>li>a:focus, - .ui-toc-dropdown .nav .nav>li>a:hover { - padding-left: 29px - } - - .ui-toc-dropdown[dir=rtl] .nav .nav>li>a:focus, - .ui-toc-dropdown[dir=rtl] .nav .nav>li>a:hover { - padding-right: 29px - } - - .ui-toc-dropdown .nav .nav>li>ul>li>a:focus, - .ui-toc-dropdown .nav .nav>li>ul>li>a:hover { - padding-left: 39px - } - - .ui-toc-dropdown[dir=rtl] .nav .nav>li>ul>li>a:focus, - .ui-toc-dropdown[dir=rtl] .nav .nav>li>ul>li>a:hover { - padding-right: 39px - } - - .ui-toc-dropdown .nav .nav>.active:focus>a, - .ui-toc-dropdown .nav .nav>.active:hover>a, - .ui-toc-dropdown .nav .nav>.active>a { - padding-left: 28px; - font-weight: 500 - } - - .ui-toc-dropdown[dir=rtl] .nav .nav>.active:focus>a, - .ui-toc-dropdown[dir=rtl] .nav .nav>.active:hover>a, - .ui-toc-dropdown[dir=rtl] .nav .nav>.active>a { - padding-right: 28px - } - - .ui-toc-dropdown .nav .nav>.active>.nav>.active:focus>a, - .ui-toc-dropdown .nav .nav>.active>.nav>.active:hover>a, - .ui-toc-dropdown .nav .nav>.active>.nav>.active>a { - padding-left: 38px; - font-weight: 500 - } - - .ui-toc-dropdown[dir=rtl] .nav .nav>.active>.nav>.active:focus>a, - .ui-toc-dropdown[dir=rtl] .nav .nav>.active>.nav>.active:hover>a, - .ui-toc-dropdown[dir=rtl] .nav .nav>.active>.nav>.active>a { - padding-right: 38px - } - - .markdown-body[lang^=ja] { - font-family: -apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica Neue, Helvetica, Arial, Hiragino Kaku Gothic Pro, \\30D2\30E9\30AE\30CE\89D2\30B4 Pro W3, Osaka, Meiryo, \\30E1\30A4\30EA\30AA, MS Gothic, "\FF2D\FF33 \30B4\30B7\30C3\30AF", sans-serif - } - - .ui-toc-dropdown[lang^=ja] { - font-family: Source Sans Pro, Helvetica, Arial, Meiryo UI, MS PGothic, "\FF2D\FF33 \FF30\30B4\30B7\30C3\30AF", sans-serif - } - - .markdown-body[lang=zh-tw] { - font-family: -apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica Neue, Helvetica, Arial, PingFang TC, Microsoft JhengHei, \\5FAE\8EDF\6B63\9ED1, sans-serif - } - - .ui-toc-dropdown[lang=zh-tw] { - font-family: Source Sans Pro, Helvetica, Arial, Microsoft JhengHei UI, \\5FAE\8EDF\6B63\9ED1UI, sans-serif - } - - .markdown-body[lang=zh-cn] { - font-family: -apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica Neue, Helvetica, Arial, PingFang SC, Microsoft YaHei, \\5FAE\8F6F\96C5\9ED1, sans-serif - } - - .ui-toc-dropdown[lang=zh-cn] { - font-family: Source Sans Pro, Helvetica, Arial, Microsoft YaHei UI, \\5FAE\8F6F\96C5\9ED1UI, sans-serif - } - - .ui-affix-toc { - position: fixed; - top: 0; - max-width: 15vw; - max-height: 70vh; - overflow: auto - } - - .back-to-top, - .expand-toggle, - .go-to-bottom { - display: block; - padding: 4px 10px; - margin-top: 10px; - margin-left: 10px; - font-size: 12px; - font-weight: 500; - color: #999 - } - - .back-to-top:focus, - .back-to-top:hover, - .expand-toggle:focus, - .expand-toggle:hover, - .go-to-bottom:focus, - .go-to-bottom:hover { - color: #563d7c; - text-decoration: none - } - - .back-to-top, - .go-to-bottom { - margin-top: 0 - } - - .ui-user-icon { - width: 20px; - height: 20px; - display: block; - border-radius: 3px; - margin-top: 2px; - margin-bottom: 2px; - margin-right: 5px; - background-position: 50%; - background-repeat: no-repeat; - background-size: contain - } - - .ui-user-icon.small { - width: 18px; - height: 18px; - display: inline-block; - vertical-align: middle; - margin: 0 0 .2em - } - - small span { - line-height: 22px - } - - small .dropdown { - display: inline-block - } - - small .dropdown a:focus, - small .dropdown a:hover { - text-decoration: none - } - - .unselectable { - -moz-user-select: none; - -webkit-user-select: none; - -o-user-select: none; - user-select: none - } - - .night .navbar { - background: #333; - border-bottom-color: #333; - color: #eee - } - - .night .navbar a { - color: #eee - } - - @media print { - - blockquote, - div, - img, - pre, - table { - page-break-inside: avoid !important - } - - a[href]:after { - font-size: 12px !important - } - } - - .markdown-body.slides { - position: relative; - z-index: 1; - color: #222 - } - - .markdown-body.slides:before { - content: ""; - display: block; - position: absolute; - top: 0; - left: 0; - right: 0; - bottom: 0; - z-index: -1; - background-color: currentColor; - box-shadow: 0 0 0 50vw - } - - .markdown-body.slides section[data-markdown] { - position: relative; - margin-bottom: 1.5em; - background-color: #333; - text-align: center - } - - .markdown-body.slides section[data-markdown] code { - text-align: left - } - - .markdown-body.slides section[data-markdown]:before { - content: ""; - display: block; - padding-bottom: 56.23% - } - - .markdown-body.slides section[data-markdown]>div:first-child { - position: absolute; - top: 50%; - left: 1em; - right: 1em; - transform: translateY(-50%); - max-height: 100%; - overflow: hidden - } - - .markdown-body.slides section[data-markdown]>ul { - display: inline-block - } - - .markdown-body.slides>section>section+section:after { - content: ""; - position: absolute; - top: -1.5em; - right: 1em; - height: 1.5em; - border: 3px solid #777 - } - - body { - font-smoothing: subpixel-antialiased !important; - -webkit-font-smoothing: subpixel-antialiased !important; - -moz-osx-font-smoothing: auto !important; - text-shadow: 0 0 1em transparent, 1px 1px 1.2px rgba(0, 0, 0, .004); - -webkit-overflow-scrolling: touch; - font-family: Source Sans Pro, Helvetica, Arial, sans-serif; - letter-spacing: .025em; - background-color: #1E1E2F ; - color: #fff; - } - - .focus, - :focus { - outline: none !important - } - - ::-moz-focus-inner { - border: 0 !important - } - - body.modal-open { - overflow-y: auto; - padding-right: 0 !important - } \ No newline at end of file diff --git a/docs/files/common.zip b/docs/files/common.zip deleted file mode 100644 index 38d07e60893cfafda34ea8ea295746e89d6e0e75..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 14427 zcmeI31yEkg)~0cHcY?dS1c%^GaCdiyKyY_=cXtmT1W9lS!9BPJ*9;{0+(UBi%>4D& zR839Qd{z5vq^jS&_I~>9-K*D@mjVSt0|Ekq0vd&*mVqv4!5shx0&+(H0($eCQE(g-%DBKT0LtKlgc~hNvX`<;3-`rs!S$OG%Ph?d` zvV5>dq@t5I;7RwFRYz7J2of14MY9;ijhAyvrm8fp(xcIGqd$ltm(KFzH_CPHz884P zMzy_8$jDsVFu!`0Tv?UyNk2KmmEn{6)yd}0aklu~c>>=3G9Uku)@oh2)FfZq!TI2q z{oYICV5gE)7m;Cb5|w@n*&pa^yriLUrQZ~>m{*}$%4r;d=O~taqueM(K_MNQ+k~Lt zg-xXSW0_+80a>VPj=JItgoDx|h>GkAS}ekf+<==0B{e!wbD3UQtM?k@n9RnTa;5oS zON>G!nVk|pO0&q&kwl|qBnQey!>5pcJIo|s>o;nh-ZSTq_E%;eIRlUoU?QipPRln^ zD-W0);}W;JO5=~)4TjWW30ye;YFt}<3C#MtV@nu>UXcHz<;n7pb zi3GMVhWQ%SXb^G()Fa&+bBdG@0&q|k=vhmm!K!~HI%1u}3Km{-J)|#=3^w`%3XGVsOcj$Z*Dyvk5IUTYghFqq=7}+K)c#)0Tu|2 zn93Ng$evp&iBX6WpCdszg+>z6Dk?$-KURM$T^b*!>aF^|hjtha0Egp|dAX(zIqu^` zP~N!Z(*R+vOfzDpMqAQ>0E)A01hdo-lFD)Jta=)V>HhtKg_hU3dXrln1$ag=15s-n ztj0cR=>!1(;JfUbOA=%)3c_YF>F1k9gup=u1<4e^6ig}cy(=K1n-PMZ)5ZdP2eBX7 zcbGQi3fe{TJtMWPHaE^Rb>X(_aD=YwI~hA-2;NbrH8z_hAmJ9GkT)$YCi?U)rx>ld zGsG;g?vyInHcTIG1$O;D6s&{gJT7a=ZopTruRhm3Prn-4)tW+P%ia2X z+umqlnE&?TDrrjOagKq~8hL`^Ikxx;^uk zf|a!jZcDQzk3oLb<#|QN{wsFX_t}tytAuXQAKoK6UQ~Av zl7eMV*XO|Kl2Z8IT;-0|K@+3E0A!4CXlk8?*VoI{Rt;wO2k^Zj;9WssPacP~rg(mK zrm0$T40Kn8sjy|DIiQ=mdDo(SSyAJzD_Uo@rRf5Mm*Z3mOv-q(YInt7_u_s}*y5cN zgFs5$9c|*QJF%-i;!JnpoUae$VyyOgp0mDxTJ$o;@PiYSM1^n)Kng!{R+SmZ27jYjh&ywA!$? zu7b?eI>MvE=Fz?Ig~8eW*5`13V{sGr9y-_DB>c~F4fusxyjsfyEIEoAZfrcT&FSf+ zD;Dips@Rf-uFZ?tnBX?MLcYr+C&wTX#pnF*6C`Xhc1;cQ>yMK}GU*s%et^sW+xRiV zXk;cH=~Y1>fPnZA|C8}E|1|zaRZpb_F{B^a*j>Gmhw|w&ai9&UaY$c*g;SY0*%+-U zBp2hIk`PIkz8!5s(%u{_#aq=#ypm;Mo5|HY+-QzoNF3Tc-?=_#s9SmcnwPI_r*Sm8 zy?C=`LHP40=w+9-J1%SQN@;|)%?3|d**3_5V4oi%8kq=lKRTT~rul@M>K!M!d2O!- z`xg9X+|wIMvzn$tiX)V<%hhieiCQxB%}21D3)gih2?_^naK zO2a5YkRt`6i9NMJQ6U1byVc;rjA7wy;_+cZ7e5^*&Im+`uPWA=fML->F@p>DgT|PH z1?5u~!Bw>eFrA?$EJ8?vGMWK>2%|o!ZhnOZENuX9)gvGY3b6}~c-W^e{brQ{1x;gm zg=9i`@;>874;+n?GBNo@m<*X^1g!QLY@J7n}w5uQvD@4Y^Z%7S47Fc*o6a*XIWvUv@WzA;Rn@ zcL~09cw)r_G)@{8CVefD^Dmdq1BIykmT%mf6%3-QgRuvDst%!3x5R(|Tu%ELGiws7 zW-aOP`zLzuY@PQ-Bth`vKwlgt!AK0pg-^`8wAhHSM36-AdN@aMv4h}(kWUgePLq9W z#t8{UOay#H<`lx_jh6S7IZITIUVE?Z(t^7b$lAptxFwW=@MTdDdbbjn#GahTfpg7q z>l8%e_!D`=lqn{zQJt4XgS)0)-ORv_nQyLamrHcyU+jxLe7)k(j1=2&VM~?b&f}KX z!m(|B>&$Mca{SFAE(Q2VjF8Jgg5XjhurEN6u>p|2JJ8IyGi~8&#x@b0MS7poY=)V2-;+Tkd925?g;xt) zqhzc}aYrUWq@=rk?V`^bHER5H&m~bH*Xe)C8d4uKqQN%0H(Q&-M-z)^(>M-^64pt5wi+Zpn(%ap*-w3WqojW5RBYiQHr+-}7sS5(OeAf!HHq!$w= zcZ#xR7ih*ElXyq#s@=?tHh*9<7ma(Hbn`y{$nW-8IbM3#M_GxS3#h1ThbZ&4ruwmT z&iDhv-*bko7pV-B;Zj)3(<0&M>414U{$3(jM+n0DF#?GlKZYTGmq$`ZataBFodR1Z zz(50Ia+>c>;`ArpYfjc~bGkt|KJ7w?GX}vBvkC?`6-2Z7Dk74>g@26~0b9{R2!6*W zj%Qd)N?U;Y(ThX?MDXh@IUh2b@;nb)AUlk9p@*!ygmFFt1OWlU`1F-wm6Y+Cj^zVB zVitR98+@4(o2#+*Z0Xs(GXtK+#^aFb#+utLV7}lRo6=yR^`sCXjrvf%^+>c@_}GZi zbk+yp-{V`u_8$2&zF#xpAMs%$|34XDOm{!tJqQqx{nNaU^mP9mjE&4+F7zUmt!<|S z;2xKC_1nZf^|g6ep#|A;E%y5hCS<*lg?;l#?9-;=+U;BwG%4>6XOp9hm$1CJw7o7j z1}-bknD4&#lz@B+BfS@2fj$7U3}AedyoVL_`iTDC3dpMH z^#S`k6+r?%t=QSHPf~O@()?5(N zcn;ksQ0(bdJiq8{rc&jBmKlo9_;)fqQmaJ3`dCtg*n2wHm=^YGp&bY^wg2dCXxIr= zkqc#y*`0$kj0szb0B6RI2%-KG$70NC6)w5&6jg)+O3{Re3cXPlr?^d-Kf{6IEwR5N zpD^uRpJs`Q2~i2pAO3dIyz}NZuAHX9Ik2YbvdT%c!=#KeNU@UgIv5e*H8^vi^xDm2 zv5U6daAL?{BC)@S2^9014J|NcTtO3}@GY~W#G~|{tbavWw8&Q2Cst;BXo^O^rmRSr1tR1qIVA=^Da6q5D--^JtJ*LyV@4gG<5V4EwkxQI7 zD?ftk3YF<)zIHvRQ8pt{$Whg^O9m8|8M~w3I;(Nac-_7!`L(^gCEyr3j?*|Bo{og3r8o6LM0|JcX@ z81Fmbw^G_HOKHKj>!<{5n2I8~iG6!in-?71pqZqJxQ%VgJ9`AGB!wGHM4ZQR1TY2P z7xchYr#|(n$A7iQUlHE!0wRvh3vq96uGZX`fZk{r#p+~p=}DZz|ncex@&G90~! z>N#r-Hmd>2uZY<7A*l#Ai6hk$Ir`>hOQbMT!n#dwo`3i9AaR69 z0QTlqhhTim5la)rdJYL#UFXm8$kw&WF3UOxS(HTXln25p?mTtxRm!k1A7^BdHZCoE z#w3GVDQEo+Tz&+bn@^yYXQ5cXnySa{e}(=58`g*!3t6R%%=EL_EJotYE}jedRHSfwrLZQRU6E@kPR3ENk4dN>W-cNmogQyym*WU8uW`!M>}huXVgZX?R} zaD^HQCy0c29xz5QsXb?fa))iJDKyBjG@=lp!$?LwOKKqWq!NedaJxgpWH&6OJn(g8 zd?=|j-#+01rKkc?}FFC-n&=-UV(S(0d8r-*ag5Z{*=CE+? zocQv(N=$OVP{?jMn-@*|TQdNrswh6Vp1gX4yDNCq8(4%`6#2}>R=2r7AGO~+lgY#K zAb_S+6j%Fn=J1IBRe#0}a=^AD;)EW!m^${<4>2{&5mJfnkj0^!Wud&BwGVtoGWQU_ z50#HYX4BSBLnRdq291ux4?)NbbLoMsz$1j1CJ^`6;M{{*Hk{u z2BlGJZWX)D8Okw$(3C%}aDB+*QWsULU6W4vF7qsF+pFLVr79|^xF%&3gK(8qL)v8O zOP?86IEI@u27p+j=WfS}{l*O_{{~NXB@$!mlx#SEh%AD9=oGwSbWCiBDI!!o+PI(0 zpWd)DN*@D6(rk2H(h-Way)>ov$j)zhdopfR_eC zGk>$n8Vyl4u^~Xp)KEb(5vlC*oR%h~VM|WS^tJ|)XQ_t%j+Ckej$_T5$VmcHZ2{s7 zV7bxf8?%1%Bb_w1RL_XsnB5SJVjBZv(Us3|qCP>bzFZG~a`aI#TZ_VYMHa(#xq@th%N4I> zSLdY9vvF8wJ33{vQ?KK2`csDBA%2_yYTpP@xj>Cs_k3{s?%3ucG=CkupWjC{JXU;m zWrs6DF?IIsn;BE&)-##B8r|(XR@^ssK>2fUvMW(r+Z!|~qN=c1G8h|DYC0K_7=~D= z^#nr^QV`nx9(295UIO6u)+d)h64xPgtwCL*nlWya5FqaLC5Er^T- zjoa{3J&|cNz#ax!EUD2`SYJz7C<&$F>5+skt#L+C#nQRr@4`_r#3unm-z(EX9YDVe zWVw*TJ==a-twnD2ZKWrnmUI#B60W)8RpA|op~sH_E$l61+)HJ1BUk$yV-=&fi@`%xXTgP?|Mel~y;Rd$GagmK3G!Q&M zLFp(Vnz-79Y-rxU5oe}|<$9(GAkQBuPab`V=2-!)3|UP@rP&jjj!&kE@@$%RhPKw$ zwl+VF^JnhOS;^WGM-b_e{+bX1J&&v(1LOgzVD?NJWKW`l91Uc^gQs|*s{QLyXNmRX z%Cfp#e(shYm&@{Hs%chfuRpt&!MFxg-UKC1FKfic!s$hWMyW8rpFLVH<=zTHSGKS% zXTWL^M;AgdV?+_tIfT6%cq_jP)&2YR&Wg3C(^F$Q?539{@XA42=d(^%@fJr(g zSUIXdz$AY5Q*t-a=Ejs5h0~nRJkulPReoTZ(`|}`88Sh6pC#M)`Qv?0<&sYcLe*>9 zC<{>O&)N@lQvu`tqjj0FHldUBpPX{9M;~uX58|+kZ+YuHRJJAt`_uJn~0x1iQ<;I3C-J8_b>I=;Yy_R|1<&yA(R*RenQHv z8{3P`!+2u0ZaGv|_p|N;JTD`-3fKGG)bg9NXuJ=@nvt&u>2xzFV2!$#JWbf;&vG2T zBB+$L%Ad`D`82B$+KDg!Lu|-ptbR5s;?=}-&gEKWgKr`1B84CwgNb6nc0qO%i?lk* z=69K`QvEKD@lM3AToac1pJv{?HD#A*GHy}8nmEZIYZ_#(UB=1rygB_YaPSt7)RoEf zqq(k}t0oA*8;WKP;=Mki{hpI+ZQBwU-J}a#$x0;t5o7ePY*?(7RpECS9iM9gBfI3F34wBZY;fy zLukB2{M#~bpSXSl0tnFIe?x`?U z@S(FlOH6nKV87VGcQ(x8>^2@04X*(!=;VnT`3iv|K7B$(t8zM*5I~vMZ9V+~`<^p! z*$xWeZ0m&H&ls@|eGUrQ`te{v^|#_j1cDU5 zGCaWe@Rx&crct`4mHh~tK@6kuT+IAOuURZh+~r#>gQ>r0m8c(nH?ykzxQt--F5kF) zTixo7Sd4{*{N1^rM)xGwQCv<055*ncFCerctVzHQadTwO1{L3kkwxdkWKfL-odCs(>9~k7COW;LH4U$RaS+ z`yH{y+{I$gZ!N9-EMxEr5)=jFgljqj1#pC)nMhPoW&O<1#>t|0WY$-YOn5`(WOvO9 zM9s9{(gf37d^hwWnl>D;tX`shKa06P!)m&J;)Yltoc{p&H<=GlWID5xBK=Rv{57Hf zNoEn)Es=Qbb}Co|#c7&66yE+}hE4mCj_XxklZ20_>Fda#H2;kjckiuK)4h`%ctYF; z48NUAb{qg{#76qWmx7;`sesn|Or{tAzsZ!h!t6r z&xaDD2Uto;cg0*!PQxxGt%t~Hz5r^NE9tS~ZGmhms)isY_fQ8N+ZV2(ZLa&$x4s0s zG-MDy0Nei}ncH%kZgbMqwCR#ydzluAp>wI4tv~b*wRyDgzTl)JEI@oKfd)Wk8f%g~ zkV&?aP6e)O-dQS9T}%oSt;%mIvd9jLM?qkLvyAG8PT|4PN7}jhnuQPKI%G0WxVV() z_&@gKo7S%3J8PVwiYjS7duD4ArT^&#)-TV5b?c^j@=Wt*&y1DO{Vew{&-8op%(;}njz;emJxyl*_RRYEZxcT~bNv3_p84f3&vaZQd-BX8#e!neoM+Ee++3I0 zsx|Iv9?wKnefCViTgbPjGZIbuFFbP|E64Nn)Ijb)46neI$?(}Tn@pcQQ)+DsQuS}o z4EpJrTaUxfo|zdV89d}(icOqL2^nt7aDyh21}5)B>fVpH43$Z+{J`Pa!!r^ZWO_qYOkzQaLwm&0Z-cU4I`8u4(*yDBUUtDwtx@w`*6gE-EVfl@p`oZ zk7isMy%y{{48e?~9xQ0km~c1|Y?f)*C+F~E!jd~_fL$(=4E1yae%PW&2x4Nj5ej*S zdI*q`GI+E67IA@U<5)3)$v7)kQj~}QugtG*aPYRtM8hfSLr@;{wy5vE0wFw2dX_%a z@lu3GlOOg3J0JZ()05X5-%HlTD8mT1)R_1y(oQKSMJ147ql)p1(x3&mV@%_|OKp}& zuwS!%SfEwmI@BZ7ROYFyK8g(wS!$!;H=+IBoSC#0WK7yjF+O!qI4Q&e`8Lp?^i`rn z5AkYGe*#1TT7F1arx8XfRr!PvZYq;XBmiS(MmUsNMat5!CNF^_qczFpC>xPG;h1x^<#1DKnnYB_f(pkSq9J%^OYSewdp)%!F^oHX>Jc@O%zgDRl-Bm#jR-RA#TX%-t>!@Vw@ElM0)Lfm{VW5k$^A97>$p6#E9; z7J91V@TeStxMR6xXPNhMY*Fq;_mtWVeHgO-#;%rAZva812j^X}3jCwFF{anK(9#s8 z>A`CFYNh>6hs{zFS;7$pyb<1lh0h-eZx4{<_Wy|Pzp`8jw$JGH|Ap?PO=3~05GwUJ z5tH9_zKurnpmWAYO9Rs;lF$9ObFMCCQVObv@GxUHt#_HnaiA?32xIyVOle+0XL`(d z+O(#feUvHF2swn^q-x#8Is7>9xcrvg;I;`p>1p^n0|kw5WMA!75cu5+%A58(ZX)akqcnYuW2Ad!|@ zy&zSRI=Si-x?DfeMgNKJW0_ez<#x}?b+daB%shaPy~IUB^#!^d&**+DsQHDi;=j<1 z{~g`UpXe&$rn0<1x0Fdu;WO^2mXxNexMYWSqq+n-`ZKy@hu19+j|;hnRWb8uBKw)o z=tliScl;%~rOm(4m0%8W?|(*j<|n$yPv};1W;M%S@t8I5q39Q36eUSW!X<-vsZOo7 z&1&KB^2pq6`2S$6L?loMZNfwB;<>gNuvP_U7<4t_i^>|X{4l}QvG)Sq3k>zpCv;V9 z7sPPl8q1AD-8*G=kSbdDGY92g%(WYlk2wr+jSjZx^7~^zZds9Gm>|DnnCQ( zdl_XzVue+ew*UcOVg`E@%TRo)H`?lRw%fB*Oa17JbJdQc?xXt~4fZUl7ffw95q$al z1lkBy7*oq$j0BDIEm(%ESsNZ+OfB~gAKSJxGa&dQKGTb8&AW<6p;9#ya4FI?DG0S_?2w?P9^i(JG1$^o zd&IyrNmj-&RBD0L)f&Wo%j}k)tgBEm?mF(=%z%A>4?ee1u3oh-%~X>wVurB?>SP+4 zZf6^O!Xb0D&UZUelNbtcGN+X&rG{xdKj)=sZP+5KlDc*C&Fs`u$FD6wV^)K_GR`f( zPVvx;_wYIyVF;AI?$iaR+Lox{<74dk9;b2y8#ecYe{0?@dbXxmGGAW39~EkMv;kNm zZ2(M0I}stvvbe9YwrsPl^*QS#J=|cOHdI-er&h`X@ODh!3Hjp0;nAtgUCPQqe)~CU zGCtpRMYo-g#@MPa!rg^lWpg)60^X2xGtJNEc6E>>28}DghfQCfy^^Ae0%IW!U0f7E zq_{l5%ZaMc z$4V2)?;#_tcT#8gAkA0;<)cA^m_dJ*j3u|U@!ZJTQBcK=ve#@jyE?yHBO|h( zm#w9%czsyUFlIrf`sov3?GvFV z=c9x6w#Rlq#t6l?cR~&x=ef9cvexUSSSIKA_b)%)q<4<0Cp(q4?u7-wit+aE$^Kwt z<0VdwD0!|G-o$1Z%N_wY3ceQRUXMkS!5bVoGX?u$hQ?$Fkt!X6htOOslmQ>m;Gat? z;w3jq9%gAGE=xh#>J3$8Oj&6@AL=}-;y~>v_AZ(Goj-L@Nrix`L=WrKG_!+k>)EvV z`CN>-;?k@YvW+yLNUX98C!sb*BiEhl`r|gSNqmu{O1qe|LDL7OG)+_6WHBm|egmip zirw25F~1^;crYVo5EjYBZJd;bSBFUbA)q(pfm+snqVL%uN)oxWC}(6}tqF&~z*B7? zQ^xv!EAb5twye?{?!jZ@@STLB?OE4Uf?vDf{>bbnVd5);MQIGkkv%{J~4rm35 z#29hg@m20@dc_h2NtMrJQaeedG%=glW0A_ntxi4=nYAS@6sSByz3>D4#~GfO_z86@ zqnuG~XCQ1xPO6fMZExTD{*U7uF`6vTcb{VjZK^}`XB=X4&J^R3D0TuSy+rcM9dw!P zMHLAKq`hzmPW`udgJ$Up)Y&=gY_MumGO+00yxpT&k1n|!*r?5(=OuX?hdkmo%$ShD zmWSq?D*n0BP611bc%&rLAcfd!*q*b00F(Y2gr`E{w@mp+gdAS*9Qh~x^?ziL}Nb{0lsfS|xv{dcQ16ZjCQ7)s5v_iV; zvxuuyx`tQjmGA?`AsI{xbzz|qjx*;q3%;P`sAwj<20gqd%vj}HodRMD~=GUzst{QMp^4cKL>441D>A8AsG(dlE&n0Stu%si4} z{JPy-kXedAf?Y^`g_Uv&ia6@3-^S%z-$%VyM1wtkH!=GAXi)i|b&59hJ1>nw>e1Ts zt^H7$HYIY4-)+2uW(tuq;4=ychs8)Vz&uSLu%O%8LPkfAUZaQYD6YG;I}E=_7OYq4 z(xojvO=7RojLcqHs%X}zT=?chzY~%s?r7{^+4fbd+!Ju=kTwW(XYSZ7LTbpaq|Mym zpTE36Izjbz#ddpXs=lom6ric5E_;JsVRbN*ZmCqAZn?}rdEG{B0Rapqb4C5*<^=iC zPxS;A>_qJ$G^DUWa0(rxKDN4qX#)#xD2NZ0q^eL2p}$C!Agzf*uXdsF6*{ULhI*D9 z;hH{L%l=12J%B5ca?xCLqq5p%kU6aTef}BTJ_-yV`GU6bZ7MrlrNcs1*Efd3MpUpJ z@F<#n27oK-if9cQ2}k8B2FMs<2RPeGJLW6tKJO%A7uih=t6mt+GGWYnNX2m3@?g)6s$L(3;vj)&6jh1IpsfH^trrwM|Ub$W?&@5&@4-U+%aD6T^t-c|p6?Nw zM; z6FyMNWQDNO{KyoUueEX9ix@?J;L1w@gAo3FALKv1B|`dS{m-9QKfnK+27YCUVgB`B zU?40Y;;ka~B=KqBLB@GzfA;-*0olvG;o*Pv{m=8}F>n2ORsL-M?EClPt(Sct zKK1=)Dc8%hmyG$P@Mrs{!tX^dFBLG6Un=}F2G!>On!@k30xuPWo?brsqjKQC6T:.*$ - -ignoreregex = diff --git a/docs/files/etc/fail2ban/filter.d/ee-wordpress.conf b/docs/files/etc/fail2ban/filter.d/ee-wordpress.conf deleted file mode 100644 index e517073..0000000 --- a/docs/files/etc/fail2ban/filter.d/ee-wordpress.conf +++ /dev/null @@ -1,3 +0,0 @@ -[Definition] -failregex = ^.* "POST .*/wp-login.php([/\?#\\].*)? HTTP/.*" 200 -ignoreregex = diff --git a/docs/files/etc/fail2ban/filter.d/nginx-forbidden.conf b/docs/files/etc/fail2ban/filter.d/nginx-forbidden.conf deleted file mode 100644 index cb5f21b..0000000 --- a/docs/files/etc/fail2ban/filter.d/nginx-forbidden.conf +++ /dev/null @@ -1,4 +0,0 @@ -[Definition] -failregex = ^ \[error\] \d+#\d+: .* forbidden .*, client: , .*$ - -ignoreregex = diff --git a/docs/files/etc/fail2ban/jail.d/custom.conf b/docs/files/etc/fail2ban/jail.d/custom.conf deleted file mode 100644 index cc0e0fd..0000000 --- a/docs/files/etc/fail2ban/jail.d/custom.conf +++ /dev/null @@ -1,24 +0,0 @@ -[recidive] -enabled = true - -[nginx-http-auth] -enabled = true - -[nginx-botsearch] -enabled = true - -[ee-wordpress] -enabled = true -filter = ee-wordpress -action = iptables-multiport[name="ee-wordpress", port="http,https"] -logpath = /var/log/nginx/*access.log -maxretry = 5 - -[nginx-forbidden] -enabled = true -filter = nginx-forbidden -port = http,https -logpath = /var/log/nginx/*error*.log -findtime = 60 -bantime = 6000 -maxretry = 3 \ No newline at end of file diff --git a/docs/files/etc/fail2ban/jail.d/ddos.conf b/docs/files/etc/fail2ban/jail.d/ddos.conf deleted file mode 100644 index 14b7ba2..0000000 --- a/docs/files/etc/fail2ban/jail.d/ddos.conf +++ /dev/null @@ -1,8 +0,0 @@ -[ddos] -enabled = true -port = 27015 -protocol = udp -filter = ddos -logpath = /var/log/kern.log -maxretry = 3 -bantime = 6000 diff --git a/docs/files/etc/mysql/my.cnf b/docs/files/etc/mysql/my.cnf deleted file mode 100644 index 726341c..0000000 --- a/docs/files/etc/mysql/my.cnf +++ /dev/null @@ -1,187 +0,0 @@ -# MariaDB database server configuration file. -# -# You can copy this file to one of: -# - "/etc/mysql/my.cnf" to set global options, -# - "~/.my.cnf" to set user-specific options. -# -# One can use all long options that the program supports. -# Run program with --help to get a list of available options and with -# --print-defaults to see which it would actually understand and use. -# -# For explanations see -# http://dev.mysql.com/doc/mysql/en/server-system-variables.html - -# This will be passed to all mysql clients -# It has been reported that passwords should be enclosed with ticks/quotes -# escpecially if they contain "#" chars... -# Remember to edit /etc/mysql/debian.cnf when changing the socket location. -[client] -port = 3306 -socket = /var/run/mysqld/mysqld.sock - -[mysqld_safe] -socket = /var/run/mysqld/mysqld.sock -nice = 0 - -[mysqld] -# -# * Basic Settings -# -user = mysql -pid-file = /var/run/mysqld/mysqld.pid -socket = /var/run/mysqld/mysqld.sock -port = 3306 -basedir = /usr -datadir = /var/lib/mysql -tmpdir = /tmp -lc_messages_dir = /usr/share/mysql -lc_messages = en_US -skip-external-locking -performance_schema = ON -# -# Instead of skip-networking the default is now to listen only on -# localhost which is more compatible and is not less secure. -bind-address = ::ffff:127.0.0.1 -# -# * Fine Tuning -# -max_connections = 100 -connect_timeout = 5 -wait_timeout = 60 -max_allowed_packet = 16M -thread_cache_size = 128 -sort_buffer_size = 4M -bulk_insert_buffer_size = 16M -tmp_table_size = 64M -max_heap_table_size = 64M -# -# * MyISAM -# -# This replaces the startup script and checks MyISAM tables if needed -# the first time they are touched. On error, make copy and try a repair. -myisam_recover_options = BACKUP -key_buffer_size = 128M -open-files-limit = 500000 -table_open_cache = 500000 -myisam_sort_buffer_size = 512M -concurrent_insert = 2 -read_buffer_size = 2M -read_rnd_buffer_size = 1M -# -# * Query Cache Configuration -# -# Cache only tiny result sets, so we can fit more in the query cache. -query_cache_limit = 128K -query_cache_size = 0 -# for more write intensive setups, set to DEMAND or OFF -query_cache_type = 0 -# -# * Logging and Replication -# -# Both location gets rotated by the cronjob. -# Be aware that this log type is a performance killer. -# As of 5.1 you can enable the log at runtime! -#general_log_file = /var/log/mysql/mysql.log -#general_log = 1 -# -# Error logging goes to syslog due to /etc/mysql/conf.d/mysqld_safe_syslog.cnf. -# -# we do want to know about network errors and such -log_warnings = 2 -# -# Enable the slow query log to see queries with especially long duration -slow_query_log = 1 -slow_query_log_file = /var/log/mysql/mariadb-slow.log -long_query_time = 10 -#log_slow_rate_limit = 1000 -log_slow_verbosity = query_plan - -#log-queries-not-using-indexes -#log_slow_admin_statements -# -# The following can be used as easy to replay backup logs or for replication. -# note: if you are setting up a replication slave, see README.Debian about -# other settings you may need to change. -#server-id = 1 -#report_host = master1 -#auto_increment_increment = 2 -#auto_increment_offset = 1 -#log_bin = /var/log/mysql/mariadb-bin -#log_bin_index = /var/log/mysql/mariadb-bin.index -# not fab for performance, but safer -#sync_binlog = 1 -#expire_logs_days = 10 -#max_binlog_size = 100M -# slaves -#relay_log = /var/log/mysql/relay-bin -#relay_log_index = /var/log/mysql/relay-bin.index -#relay_log_info_file = /var/log/mysql/relay-bin.info -#log_slave_updates -#read_only -# -# If applications support it, this stricter sql_mode prevents some -# mistakes like inserting invalid dates etc. -#sql_mode = NO_ENGINE_SUBSTITUTION,TRADITIONAL -# -# * InnoDB -# -# InnoDB is enabled by default with a 10MB datafile in /var/lib/mysql/. -# Read the manual for more InnoDB related options. There are many! -default_storage_engine = InnoDB -# you can't just change log file size, requires special procedure -innodb_log_file_size = 256M -innodb_buffer_pool_size = 2G -innodb_log_buffer_size = 512M -innodb_file_per_table = 1 -innodb_open_files = 500000 -innodb_io_capacity = 500000 -innodb_flush_method = O_DIRECT -# -# * Security Features -# -# Read the manual, too, if you want chroot! -# chroot = /var/lib/mysql/ -# -# For generating SSL certificates I recommend the OpenSSL GUI "tinyca". -# -# ssl-ca=/etc/mysql/cacert.pem -# ssl-cert=/etc/mysql/server-cert.pem -# ssl-key=/etc/mysql/server-key.pem - -# -# * Galera-related settings -# -[galera] -# Mandatory settings -#wsrep_on=ON -#wsrep_provider= -#wsrep_cluster_address= -#binlog_format=row -#default_storage_engine=InnoDB -#innodb_autoinc_lock_mode=2 -# -# Allow server to accept connections on all interfaces. -# -#bind-address=0.0.0.0 -# -# Optional setting -#wsrep_slave_threads=1 -#innodb_flush_log_at_trx_commit=0 - -[mysqldump] -quick -quote-names -max_allowed_packet = 16M - -[mysql] -#no-auto-rehash # faster start of mysql but no tab completion - -[isamchk] -key_buffer = 16M - -# -# * IMPORTANT: Additional settings that can override those from this file! -# The files must end with '.cnf', otherwise they'll be ignored. -# -!include /etc/mysql/mariadb.cnf -!includedir /etc/mysql/conf.d/ diff --git a/docs/files/etc/nginx/common/acl.conf b/docs/files/etc/nginx/common/acl.conf deleted file mode 100644 index 8955bfa..0000000 --- a/docs/files/etc/nginx/common/acl.conf +++ /dev/null @@ -1,8 +0,0 @@ - # EasyEngine (ee) protect locations using - # HTTP authentication || IP address - satisfy any; - auth_basic "Restricted Area"; - auth_basic_user_file htpasswd-ee; - # Allowed IP Address List - allow 127.0.0.1; - deny all; \ No newline at end of file diff --git a/docs/files/etc/nginx/common/error_pages.conf b/docs/files/etc/nginx/common/error_pages.conf deleted file mode 100644 index 192e43a..0000000 --- a/docs/files/etc/nginx/common/error_pages.conf +++ /dev/null @@ -1,16 +0,0 @@ -error_page 400 /400-error.html; -error_page 401 /401-error.html; -error_page 403 /403-error.html; -error_page 404 /404-error.html; -error_page 500 /500-error.html; -error_page 503 /503-error.html; -error_page 504 /504-error.html; - -location ~ /*-error.html { - try_files $1-error.html @error; - internal; -} - -location @error { - root /var/www/error/_site; -} diff --git a/docs/files/etc/nginx/common/hsts-nosub.conf b/docs/files/etc/nginx/common/hsts-nosub.conf deleted file mode 100644 index d14da26..0000000 --- a/docs/files/etc/nginx/common/hsts-nosub.conf +++ /dev/null @@ -1,2 +0,0 @@ -# Warning : this line enable HSTS for your subdomain (ngx_http_headers_module is required) (15768000 seconds = 6 months) -add_header Strict-Transport-Security "max-age=31536000; preload"; diff --git a/docs/files/etc/nginx/common/hsts.conf b/docs/files/etc/nginx/common/hsts.conf deleted file mode 100644 index 05968d4..0000000 --- a/docs/files/etc/nginx/common/hsts.conf +++ /dev/null @@ -1,3 +0,0 @@ - # Warning : this line enable HSTS for your domain and all subdomains (ngx_http_headers_module is required) (15768000 seconds = 6 months) - add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"; - diff --git a/docs/files/etc/nginx/common/locations-php7.conf b/docs/files/etc/nginx/common/locations-php7.conf deleted file mode 100644 index 2908309..0000000 --- a/docs/files/etc/nginx/common/locations-php7.conf +++ /dev/null @@ -1,116 +0,0 @@ -# NGINX CONFIGURATION FOR COMMON LOCATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -# Basic locations files -location = /favicon.ico { - access_log off; - log_not_found off; - expires max; -} -location = /robots.txt { -# Some WordPress plugin gererate robots.txt file -# Refer #340 issue - try_files $uri $uri/ /index.php?$args; - access_log off; - log_not_found off; -} -# Cache static files -location ~* \.(ogg|ogv|svg|svgz|eot|otf|woff|m4a|mp4|ttf|rss|atom|jpe?g|gif|cur|heic|png|tiff|ico|zip|webm|mp3|aac|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf|swf|webp)$ { - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires max; -} -# Cache css & js files -location ~* \.(?:css(\.map)?|js(\.map)?)$ { - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires 30d; -} -# Security settings for better privacy -# Deny hidden files -location ~ /\.(?!well-known\/) { - deny all; -} -# Use the directory /var/www/html to valide acme-challenge -# just create the sub-directories .well-known/acme-challenge and set www-data as owner -# # -# chown -R www-data:www-data /var/www/html && sudo -u www-data mkdir -p /var/www/html/.well-known/acme-challenge -# # -location /.well-known/acme-challenge/ { - alias /var/www/html/.well-known/acme-challenge/; -} -# Return 403 forbidden for readme.(txt|html) or license.(txt|html) or example.(txt|html) or other common git repository files -location ~* "/(^$|readme|license|example|README|changelog)\.(txt|html|md)" { - deny all; -} -# Deny backup extensions & log files and return 403 forbidden -location ~* "\.(old|orig|original|php#|php~|php_bak|save|swo|aspx?|bash|bak?|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|sql|svn|swp|tar|rdf)$" { - deny all; -} -# common nginx configuration to block sql injection and other attacks -location ~* "(eval\()" { - deny all; -} -location ~* "(127\.0\.0\.1)" { - deny all; -} -location ~* "([a-z0-9]{2000})" { - deny all; -} -location ~* "(javascript\:)(.*)(\;)" { - deny all; -} -location ~* "(base64_encode)(.*)(\()" { - deny all; -} -location ~* "(GLOBALS|REQUEST)(=|\[|%)" { - deny all; -} -location ~* "(<|%3C).*script.*(>|%3)" { - deny all; -} -location ~ "(\\|\.\.\.|\.\./|~|`|<|>|\|)" { - deny all; -} -location ~* "(boot\.ini|etc/passwd|self/environ)" { - deny all; -} -location ~* "(thumbs?(_editor|open)?|tim(thumb)?)\.php" { - deny all; -} -location ~* "(\'|\")(.*)(drop|insert|md5|select|union)" { - deny all; -} -location ~* "(https?|ftp|php):/" { - deny all; -} -location ~* "(=\\\'|=\\%27|/\\\'/?)\." { - deny all; -} -location ~ "(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\")" { - deny all; -} -location ~ "(~|`|<|>|:|;|%|\\|\s|\{|\}|\[|\]|\|)" { - deny all; -} -location ~* "/(=|\$&|_mm|(wp-)?config\.|cgi-|etc/passwd|muieblack)" { - deny all; -} -location ~* "(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ)" { - deny all; -} -location ~* "/(^$|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell)\.php" { - deny all; -} -# Status pages -location = /nginx_status { - stub_status on; - access_log off; - include common/acl.conf; -} -location ~ ^/(status|ping)$ { - include fastcgi_params; - include common/acl.conf; - fastcgi_pass php7; -} diff --git a/docs/files/etc/nginx/common/locations-php71.conf b/docs/files/etc/nginx/common/locations-php71.conf deleted file mode 100644 index d3ac3ab..0000000 --- a/docs/files/etc/nginx/common/locations-php71.conf +++ /dev/null @@ -1,118 +0,0 @@ -# NGINX CONFIGURATION FOR COMMON LOCATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -# Basic locations files -location = /favicon.ico { - access_log off; - log_not_found off; - expires max; -} -location = /robots.txt { - # Some WordPress plugin gererate robots.txt file - # Refer #340 issue - try_files $uri $uri/ /index.php?$args; - access_log off; - log_not_found off; -} -# Cache static files -location ~* \.(ogg|ogv|svg|svgz|eot|otf|woff|m4a|mp4|ttf|rss|atom|jpe?g|gif|cur|heic|png|tiff|ico|zip|webm|mp3|aac|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf|swf|webp)$ -{ - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires max; -} -# Cache css & js files -location ~* \.(?:css(\.map)?|js(\.map)?)$ -{ - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires 30d; -} -# Security settings for better privacy -# Deny hidden files -location ~ /\.(?!well-known\/) { - deny all; -} -# Use the directory /var/www/html to valide acme-challenge -# just create the sub-directories .well-known/acme-challenge -#### -# sudo chown -R www-data:www-data /var/www/html && sudo -u www-data mkdir -p /var/www/html/.well-known/acme-challenge -#### -# location /.well-known/acme-challenge/ { -# alias /var/www/html/.well-known/acme-challenge/; -# } -# Return 403 forbidden for readme.(txt|html) or license.(txt|html) or example.(txt|html) or other common git repository files -location ~* "/(^$|readme|license|example|README|changelog)\.(txt|html|md)" { - deny all; -} -# Deny backup extensions & log files and return 403 forbidden -location ~* "\.(old|orig|original|php#|php~|php_bak|save|swo|aspx?|bash|bak?|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|sql|svn|swp|tar|rdf)$" { - deny all; -} -# common nginx configuration to block sql injection and other attacks -location ~* "(eval\()" { - deny all; -} -location ~* "(127\.0\.0\.1)" { - deny all; -} -location ~* "([a-z0-9]{2000})" { - deny all; -} -location ~* "(javascript\:)(.*)(\;)" { - deny all; -} -location ~* "(base64_encode)(.*)(\()" { - deny all; -} -location ~* "(GLOBALS|REQUEST)(=|\[|%)" { - deny all; -} -location ~* "(<|%3C).*script.*(>|%3)" { - deny all; -} -location ~ "(\\|\.\.\.|\.\./|~|`|<|>|\|)" { - deny all; -} -location ~* "(boot\.ini|etc/passwd|self/environ)" { - deny all; -} -location ~* "(thumbs?(_editor|open)?|tim(thumb)?)\.php" { - deny all; -} -location ~* "(\'|\")(.*)(drop|insert|md5|select|union)" { - deny all; -} -location ~* "(https?|ftp|php):/" { - deny all; -} -location ~* "(=\\\'|=\\%27|/\\\'/?)\." { - deny all; -} -location ~ "(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\")" { - deny all; -} -location ~ "(~|`|<|>|:|;|%|\\|\s|\{|\}|\[|\]|\|)" { - deny all; -} -location ~* "/(=|\$&|_mm|(wp-)?config\.|cgi-|etc/passwd|muieblack)" { - deny all; -} -location ~* "(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ)" { - deny all; -} -location ~* "/(^$|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell)\.php" { - deny all; -} -# Status pages -location /nginx_status { - stub_status on; - access_log off; - include common/acl.conf; -} -location ~ ^/(status|ping) { - include fastcgi_params; - fastcgi_pass php71; - include common/acl.conf; -} diff --git a/docs/files/etc/nginx/common/locations-php72.conf b/docs/files/etc/nginx/common/locations-php72.conf deleted file mode 100644 index 27efc85..0000000 --- a/docs/files/etc/nginx/common/locations-php72.conf +++ /dev/null @@ -1,122 +0,0 @@ -# NGINX CONFIGURATION FOR COMMON LOCATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -# Basic locations files -location = /favicon.ico { - try_files /favicon.ico @empty; - access_log off; - log_not_found off; - expires max; - -} - -location @empty { - empty_gif; -} -location = /robots.txt { -# Some WordPress plugin gererate robots.txt file -# Refer #340 issue - try_files $uri $uri/ /index.php?$args; - access_log off; - log_not_found off; -} -# Cache static files -location ~* \.(ogg|ogv|svg|svgz|eot|otf|woff|woff2|ttf|m4a|mp4|ttf|rss|atom|jpe?g|gif|cur|heic|png|tiff|ico|zip|webm|mp3|aac|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf|swf|webp)$ { - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires max; -} -# Cache css & js files -location ~* \.(?:css(\.map)?|js(\.map)?)$ { - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires 30d; -} -# Security settings for better privacy -# Deny hidden files -location ~ /\.(?!well-known\/) { - deny all; -} -# Use the directory /var/www/html to valide acme-challenge -# just create the sub-directories .well-known/acme-challenge -#### -# sudo chown -R www-data:www-data /var/www/html && sudo -u www-data mkdir -p /var/www/html/.well-known/acme-challenge -#### -# location /.well-known/acme-challenge/ { -# alias /var/www/html/.well-known/acme-challenge/; -# } -# Return 403 forbidden for readme.(txt|html) or license.(txt|html) or example.(txt|html) or other common git repository files -location ~* "/(^$|readme|license|example|README|LEGALNOTICE|INSTALLATION|CHANGELOG)\.(txt|html|md)" { - deny all; -} -# Deny backup extensions & log files and return 403 forbidden -location ~* "\.(old|orig|original|php#|php~|php_bak|save|swo|aspx?|tpl|sh|bash|bak?|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|sql|svn|swp|tar|rdf)$" { - deny all; -} -# common nginx configuration to block sql injection and other attacks -location ~* "(eval\()" { - deny all; -} -location ~* "(127\.0\.0\.1)" { - deny all; -} -location ~* "([a-z0-9]{2000})" { - deny all; -} -location ~* "(javascript\:)(.*)(\;)" { - deny all; -} -location ~* "(base64_encode)(.*)(\()" { - deny all; -} -location ~* "(GLOBALS|REQUEST)(=|\[|%)" { - deny all; -} -location ~* "(<|%3C).*script.*(>|%3)" { - deny all; -} -location ~ "(\\|\.\.\.|\.\./|~|`|<|>|\|)" { - deny all; -} -location ~* "(boot\.ini|etc/passwd|self/environ)" { - deny all; -} -location ~* "(thumbs?(_editor|open)?|tim(thumb)?)\.php" { - deny all; -} -location ~* "(\'|\")(.*)(drop|insert|md5|select|union)" { - deny all; -} -location ~* "(https?|ftp|php):/" { - deny all; -} -location ~* "(=\\\'|=\\%27|/\\\'/?)\." { - deny all; -} -location ~ "(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\")" { - deny all; -} -location ~ "(~|`|<|>|:|;|%|\\|\s|\{|\}|\[|\]|\|)" { - deny all; -} -location ~* "/(=|\$&|_mm|(wp-)?config\.|cgi-|etc/passwd|muieblack)" { - deny all; -} -location ~* "(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ)" { - deny all; -} -location ~* "/(^$|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell|config|settings|configuration)\.php" { - deny all; -} -# Status pages -location /nginx_status { - stub_status on; - access_log off; - include common/acl.conf; -} -location ~ ^/(status|ping) { - include fastcgi_params; - include common/acl.conf; - fastcgi_pass php72; -} diff --git a/docs/files/etc/nginx/common/locations.conf b/docs/files/etc/nginx/common/locations.conf deleted file mode 100644 index 2b10530..0000000 --- a/docs/files/etc/nginx/common/locations.conf +++ /dev/null @@ -1,112 +0,0 @@ -# NGINX CONFIGURATION FOR COMMON LOCATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -# Basic locations files -location = /favicon.ico { - access_log off; - log_not_found off; - expires max; -} -location = /robots.txt { -# Some WordPress plugin gererate robots.txt file -# Refer #340 issue - try_files $uri $uri/ /index.php?$args; - access_log off; - log_not_found off; -} -# Cache static files -location ~* \.(ogg|ogv|svg|svgz|eot|otf|woff|m4a|mp4|ttf|rss|atom|jpe?g|gif|cur|heic|png|tiff|ico|zip|webm|mp3|aac|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf|swf|webp)$ { - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires max; -} -# Cache css & js files -location ~* \.(?:css(\.map)?|js(\.map)?)$ { - add_header "Access-Control-Allow-Origin" "*"; - access_log off; - log_not_found off; - expires 30d; -} -# Security settings for better privacy -# Deny hidden files -location ~ /\.(?!well-known\/) { - deny all; -} -# Use the directory /var/www/html to valide acme-challenge -# just create the sub-directories .well-known/acme-challenge and set www-data as owner -# # -# chown -R www-data:www-data /var/www/html && sudo -u www-data mkdir -p /var/www/html/.well-known/acme-challenge -# # -location /.well-known/acme-challenge/ { - alias /var/www/html/.well-known/acme-challenge/; -} -# Return 403 forbidden for readme.(txt|html) or license.(txt|html) or example.(txt|html) or other common git repository files -location ~* "/(^$|readme|license|example|README|changelog)\.(txt|html|md)" { - deny all; -} -# Deny backup extensions & log files and return 403 forbidden -location ~* "\.(old|orig|original|php#|php~|php_bak|save|swo|aspx?|bash|bak?|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|sql|svn|swp|tar|rdf)$" { - deny all; -} -# common nginx configuration to block sql injection and other attacks -location ~* "(eval\()" { - deny all; -} -location ~* "(127\.0\.0\.1)" { - deny all; -} -location ~* "([a-z0-9]{2000})" { - deny all; -} -location ~* "(javascript\:)(.*)(\;)" { - deny all; -} -location ~* "(base64_encode)(.*)(\()" { - deny all; -} -location ~* "(GLOBALS|REQUEST)(=|\[|%)" { - deny all; -} -location ~* "(<|%3C).*script.*(>|%3)" { - deny all; -} -location ~ "(\\|\.\.\.|\.\./|~|`|<|>|\|)" { - deny all; -} -location ~* "(boot\.ini|etc/passwd|self/environ)" { - deny all; -} -location ~* "(thumbs?(_editor|open)?|tim(thumb)?)\.php" { - deny all; -} -location ~* "(\'|\")(.*)(drop|insert|md5|select|union)" { - deny all; -} -location ~* "(https?|ftp|php):/" { - deny all; -} -location ~* "(=\\\'|=\\%27|/\\\'/?)\." { - deny all; -} -location ~ "(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\")" { - deny all; -} -location ~ "(~|`|<|>|:|;|%|\\|\s|\{|\}|\[|\]|\|)" { - deny all; -} -location ~* "/(=|\$&|_mm|(wp-)?config\.|cgi-|etc/passwd|muieblack)" { - deny all; -} -location ~* "(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ)" { - deny all; -} -location ~* "/(^$|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell)\.php" { - deny all; -} -# Status pages -location = /nginx_status { - stub_status on; - access_log off; - include common/acl.conf; -} - diff --git a/docs/files/etc/nginx/common/ocsp.conf b/docs/files/etc/nginx/common/ocsp.conf deleted file mode 100644 index ecaf3b4..0000000 --- a/docs/files/etc/nginx/common/ocsp.conf +++ /dev/null @@ -1,4 +0,0 @@ -##OCSP settings -ssl_stapling on; -ssl_stapling_verify on; -#ssl_trusted_certificate /etc/ssl/private/ocsp-certs.pem; # <- Add signing certs here diff --git a/docs/files/etc/nginx/common/pagespeed.conf b/docs/files/etc/nginx/common/pagespeed.conf deleted file mode 100644 index 0641084..0000000 --- a/docs/files/etc/nginx/common/pagespeed.conf +++ /dev/null @@ -1,30 +0,0 @@ -pagespeed on; -# Ensure requests for pagespeed optimized resources go to the pagespeed handler -# and no extraneous headers get set. -location ~ "\.pagespeed\.([a-z]\.)?[a-z]{2}\.[^.]{10}\.[^.]+" { - add_header "" ""; -} -location ~ "^/pagespeed_static/" { } -location ~ "^/ngx_pagespeed_beacon$" { } -pagespeed RewriteLevel PassThrough; -pagespeed EnableFilters combine_css; -pagespeed EnableFilters combine_javascript; -pagespeed EnableFilters rewrite_javascript; -#pagespeed EnableFilters rewrite_images; -#pagespeed EnableFilters defer_javascript; -#pagespeed EnableFilters convert_to_webp_lossless; -#pagespeed EnableFilters resize_rendered_image_dimensions; -pagespeed PreserveUrlRelativity on; -#pagespeed MaxCombinedCssBytes -1; -pagespeed AvoidRenamingIntrospectiveJavascript on; -#pagespeed MaxInlinedPreviewImagesIndex -1; -pagespeed EnableFilters convert_meta_tags,extend_cache,rewrite_javascript_inline; -pagespeed Domain *.virtubox.net; - -location /ngx_pagespeed_statistics { include common/acl.conf; } -location /ngx_pagespeed_global_statistics { include common/acl.conf; } -location /ngx_pagespeed_message { include common/acl.conf; } -location /pagespeed_console { include common/acl.conf; } -location ~ ^/pagespeed_admin { include common/acl.conf; } -location ~ ^/pagespeed_global_admin { include common/acl.conf; } - diff --git a/docs/files/etc/nginx/common/php71.conf b/docs/files/etc/nginx/common/php71.conf deleted file mode 100644 index ae2957d..0000000 --- a/docs/files/etc/nginx/common/php71.conf +++ /dev/null @@ -1,10 +0,0 @@ -# PHP NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -location / { - try_files $uri $uri/ /index.php?$args; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php71; -} diff --git a/docs/files/etc/nginx/common/php72.conf b/docs/files/etc/nginx/common/php72.conf deleted file mode 100644 index 32c7f48..0000000 --- a/docs/files/etc/nginx/common/php72.conf +++ /dev/null @@ -1,10 +0,0 @@ -# PHP NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -location / { - try_files $uri $uri/ /index.php?$args; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php72; -} diff --git a/docs/files/etc/nginx/common/protect.conf b/docs/files/etc/nginx/common/protect.conf deleted file mode 100644 index 031494f..0000000 --- a/docs/files/etc/nginx/common/protect.conf +++ /dev/null @@ -1,21 +0,0 @@ -# nginx common web app exploits protection - -location ~* "(eval\()" { deny all; } -location ~* "(127\.0\.0\.1)" { deny all; } -location ~* "([a-z0-9]{2000})" { deny all; } -location ~* "(javascript\:)(.*)(\;)" { deny all; } -location ~* "(base64_encode)(.*)(\()" { deny all; } -location ~* "(GLOBALS|REQUEST)(=|\[|%)" { deny all; } -location ~* "(<|%3C).*script.*(>|%3)" { deny all; } -location ~ "(\\|\.\.\.|\.\./|~|`|<|>|\|)" { deny all; } -location ~* "(boot\.ini|etc/passwd|self/environ)" { deny all; } -location ~* "(thumbs?(_editor|open)?|tim(thumb)?)\.php" { deny all; } -location ~* "(\'|\")(.*)(drop|insert|md5|select|union)" { deny all; } -location ~* "(https?|ftp|php):/" { deny all; } -location ~* "(=\\\'|=\\%27|/\\\'/?)\." { deny all; } -location ~ "(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\")" { deny all; } -location ~ "(~|`|<|>|:|;|%|\\|\s|\{|\}|\[|\]|\|)" { deny all; } -location ~* "/(=|\$&|_mm|(wp-)?config\.|cgi-|etc/passwd|muieblack)" { deny all; } -location ~* "(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ)" { deny all; } -location ~* "\.(aspx?|bash|bak?|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|sql|svn|swp|tar|rdf)$" { deny all; } -location ~* "/(^$|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell)\.php" { deny all; } \ No newline at end of file diff --git a/docs/files/etc/nginx/common/redis-php71.conf b/docs/files/etc/nginx/common/redis-php71.conf deleted file mode 100644 index 808e72b..0000000 --- a/docs/files/etc/nginx/common/redis-php71.conf +++ /dev/null @@ -1,56 +0,0 @@ -# Redis NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $skip_cache 0; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $skip_cache 1; -} -if ($query_string != "") { - set $skip_cache 1; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $skip_cache 1; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $skip_cache 1; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - try_files $uri $uri/ /index.php?$args; -} - -location /redis-fetch { - internal ; - set $redis_key $args; - redis_pass redis; -} -location /redis-store { - internal ; - set_unescape_uri $key $arg_key ; - redis2_query set $key $echo_request_body; - redis2_query expire $key 14400; - redis2_pass redis; -} - -location ~ \.php$ { - set $key "nginx-cache:$scheme$request_method$host$request_uri"; - try_files $uri =404; - - srcache_fetch_skip $skip_cache; - srcache_store_skip $skip_cache; - - srcache_response_cache_control off; - - set_escape_uri $escaped_key $key; - - srcache_fetch GET /redis-fetch $key; - srcache_store PUT /redis-store key=$escaped_key; - - more_set_headers 'X-SRCache-Fetch-Status $srcache_fetch_status'; - more_set_headers 'X-SRCache-Store-Status $srcache_store_status'; - - include fastcgi_params; - fastcgi_pass php71; -} diff --git a/docs/files/etc/nginx/common/redis-php72.conf b/docs/files/etc/nginx/common/redis-php72.conf deleted file mode 100644 index 6cb6545..0000000 --- a/docs/files/etc/nginx/common/redis-php72.conf +++ /dev/null @@ -1,56 +0,0 @@ -# Redis NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $skip_cache 0; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $skip_cache 1; -} -if ($query_string != "") { - set $skip_cache 1; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $skip_cache 1; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $skip_cache 1; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - try_files $uri $uri/ /index.php?$args; -} - -location /redis-fetch { - internal ; - set $redis_key $args; - redis_pass redis; -} -location /redis-store { - internal ; - set_unescape_uri $key $arg_key ; - redis2_query set $key $echo_request_body; - redis2_query expire $key 14400; - redis2_pass redis; -} - -location ~ \.php$ { - set $key "nginx-cache:$scheme$request_method$host$request_uri"; - try_files $uri =404; - - srcache_fetch_skip $skip_cache; - srcache_store_skip $skip_cache; - - srcache_response_cache_control off; - - set_escape_uri $escaped_key $key; - - srcache_fetch GET /redis-fetch $key; - srcache_store PUT /redis-store key=$escaped_key; - - more_set_headers 'X-SRCache-Fetch-Status $srcache_fetch_status'; - more_set_headers 'X-SRCache-Store-Status $srcache_store_status'; - - include fastcgi_params; - fastcgi_pass php72; -} diff --git a/docs/files/etc/nginx/common/w3tc-php71.conf b/docs/files/etc/nginx/common/w3tc-php71.conf deleted file mode 100644 index e60250a..0000000 --- a/docs/files/etc/nginx/common/w3tc-php71.conf +++ /dev/null @@ -1,31 +0,0 @@ - -# W3TC NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $cache_uri $request_uri; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $cache_uri 'null cache'; -} -if ($query_string != "") { - set $cache_uri 'null cache'; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $cache_uri 'null cache'; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $cache_uri 'null cache'; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - try_files /wp-content/cache/page_enhanced/${host}${cache_uri}_index.html $uri $uri/ /index.php?$args; -} -location ~ ^/wp-content/cache/minify/(.+\.(css|js))$ { - try_files $uri /wp-content/plugins/w3-total-cache/pub/minify.php?file=$1; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php71; -} diff --git a/docs/files/etc/nginx/common/w3tc-php72.conf b/docs/files/etc/nginx/common/w3tc-php72.conf deleted file mode 100644 index 24b948c..0000000 --- a/docs/files/etc/nginx/common/w3tc-php72.conf +++ /dev/null @@ -1,31 +0,0 @@ - -# W3TC NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $cache_uri $request_uri; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $cache_uri 'null cache'; -} -if ($query_string != "") { - set $cache_uri 'null cache'; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $cache_uri 'null cache'; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $cache_uri 'null cache'; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - try_files /wp-content/cache/page_enhanced/${host}${cache_uri}_index.html $uri $uri/ /index.php?$args; -} -location ~ ^/wp-content/cache/minify/(.+\.(css|js))$ { - try_files $uri /wp-content/plugins/w3-total-cache/pub/minify.php?file=$1; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php72; -} diff --git a/docs/files/etc/nginx/common/wpcommon-php7.conf b/docs/files/etc/nginx/common/wpcommon-php7.conf deleted file mode 100644 index a3e7755..0000000 --- a/docs/files/etc/nginx/common/wpcommon-php7.conf +++ /dev/null @@ -1,37 +0,0 @@ -# WordPress COMMON SETTINGS -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -# Limit access to avoid brute force attack -location = /wp-login.php { - limit_req zone=one burst=1 nodelay; - include fastcgi_params; - fastcgi_pass php7; -} -# Disable wp-config.txt -location = /wp-config.txt { - deny all; - access_log off; - log_not_found off; -} -# Disallow php in upload folder and add webp rewrite -location /wp-content/uploads/ { - location ~ \.php$ { -#Prevent Direct Access Of PHP Files From Web Browsers - deny all; - } - # webp rewrite rules - location ~ \.(png|jpe?g)$ { - add_header Vary "Accept-Encoding"; - add_header "Access-Control-Allow-Origin" "*"; - add_header Cache-Control "public, no-transform"; - access_log off; - log_not_found off; - expires max; - try_files $uri$webp_suffix $uri =404; - } -} -# mitigate DoS attack CVE with WordPress script concatenation -# add the following line to wp-config.php -# define( 'CONCATENATE_SCRIPTS', false ); -location ~ \/wp-admin\/load-(scripts|styles).php { - deny all; -} diff --git a/docs/files/etc/nginx/common/wpcommon-php71.conf b/docs/files/etc/nginx/common/wpcommon-php71.conf deleted file mode 100644 index 85bfb08..0000000 --- a/docs/files/etc/nginx/common/wpcommon-php71.conf +++ /dev/null @@ -1,37 +0,0 @@ -# WordPress COMMON SETTINGS -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -# Limit access to avoid brute force attack -location = /wp-login.php { - limit_req zone=one burst=1 nodelay; - include fastcgi_params; - fastcgi_pass php71; -} -# Disable wp-config.txt -location = /wp-config.txt { - deny all; - access_log off; - log_not_found off; -} -# Disallow php in upload folder and add webp rewrite -location /wp-content/uploads/ { - location ~ \.php$ { -#Prevent Direct Access Of PHP Files From Web Browsers - deny all; - } - # webp rewrite rules - location ~ \.(png|jpe?g)$ { - add_header Vary "Accept-Encoding"; - add_header "Access-Control-Allow-Origin" "*"; - add_header Cache-Control "public, no-transform"; - access_log off; - log_not_found off; - expires max; - try_files $uri$webp_suffix $uri =404; - } -} -# mitigate DoS attack CVE with WordPress script concatenation -# add the following line to wp-config.php -# define( 'CONCATENATE_SCRIPTS', false ); -location ~ \/wp-admin\/load-(scripts|styles).php { - deny all; -} diff --git a/docs/files/etc/nginx/common/wpcommon-php72.conf b/docs/files/etc/nginx/common/wpcommon-php72.conf deleted file mode 100644 index 52a0bd6..0000000 --- a/docs/files/etc/nginx/common/wpcommon-php72.conf +++ /dev/null @@ -1,37 +0,0 @@ -# WordPress COMMON SETTINGS -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -# Limit access to avoid brute force attack -location = /wp-login.php { - limit_req zone=one burst=1 nodelay; - include fastcgi_params; - fastcgi_pass php72; -} -# Disable wp-config.txt -location = /wp-config.txt { - deny all; - access_log off; - log_not_found off; -} -# Disallow php in upload folder and add webp rewrite -location /wp-content/uploads/ { - location ~ \.php$ { -#Prevent Direct Access Of PHP Files From Web Browsers - deny all; - } - # webp rewrite rules - location ~ \.(png|jpe?g)$ { - add_header Vary "Accept-Encoding"; - add_header "Access-Control-Allow-Origin" "*"; - add_header Cache-Control "public, no-transform"; - access_log off; - log_not_found off; - expires max; - try_files $uri$webp_suffix $uri =404; - } -} -# mitigate DoS attack CVE with WordPress script concatenation -# add the following line to wp-config.php -# define( 'CONCATENATE_SCRIPTS', false ); -location ~ \/wp-admin\/load-(scripts|styles).php { - deny all; -} diff --git a/docs/files/etc/nginx/common/wpfc-php71.conf b/docs/files/etc/nginx/common/wpfc-php71.conf deleted file mode 100644 index b9e3cf2..0000000 --- a/docs/files/etc/nginx/common/wpfc-php71.conf +++ /dev/null @@ -1,37 +0,0 @@ -# WPFC NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $skip_cache 0; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $skip_cache 1; -} -if ($query_string != "") { - set $skip_cache 1; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $skip_cache 1; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $skip_cache 1; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - try_files $uri $uri/ /index.php?$args; -} -location ~ ^/wp-content/cache/minify/(.+\.(css|js))$ { - try_files $uri /wp-content/plugins/w3-total-cache/pub/minify.php?file=$1; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php71; - fastcgi_cache_bypass $skip_cache; - fastcgi_no_cache $skip_cache; - fastcgi_cache WORDPRESS; -} -location ~ /purge(/.*) { - fastcgi_cache_purge WORDPRESS "$scheme$request_method$host$1"; - access_log off; -} diff --git a/docs/files/etc/nginx/common/wpfc-php72.conf b/docs/files/etc/nginx/common/wpfc-php72.conf deleted file mode 100644 index dc10e43..0000000 --- a/docs/files/etc/nginx/common/wpfc-php72.conf +++ /dev/null @@ -1,37 +0,0 @@ -# WPFC NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $skip_cache 0; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $skip_cache 1; -} -if ($query_string != "") { - set $skip_cache 1; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $skip_cache 1; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $skip_cache 1; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - try_files $uri $uri/ /index.php?$args; -} -location ~ ^/wp-content/cache/minify/(.+\.(css|js))$ { - try_files $uri /wp-content/plugins/w3-total-cache/pub/minify.php?file=$1; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php72; - fastcgi_cache_bypass $skip_cache; - fastcgi_no_cache $skip_cache; - fastcgi_cache WORDPRESS; -} -location ~ /purge(/.*) { - fastcgi_cache_purge WORDPRESS "$scheme$request_method$host$1"; - access_log off; -} diff --git a/docs/files/etc/nginx/common/wpsc-php71.conf b/docs/files/etc/nginx/common/wpsc-php71.conf deleted file mode 100644 index f1201d2..0000000 --- a/docs/files/etc/nginx/common/wpsc-php71.conf +++ /dev/null @@ -1,31 +0,0 @@ -# WPSC NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $cache_uri $request_uri; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $cache_uri 'null cache'; -} -if ($query_string != "") { - set $cache_uri 'null cache'; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $cache_uri 'null cache'; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $cache_uri 'null cache'; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - # If we add index.php?$args its break WooCommerce like plugins - # Ref: #330 - try_files /wp-content/cache/supercache/$http_host/$cache_uri/index.html $uri $uri/ /index.php; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php71; - # Following line is needed by WP Super Cache plugin - fastcgi_param SERVER_NAME $http_host; -} diff --git a/docs/files/etc/nginx/common/wpsc-php72.conf b/docs/files/etc/nginx/common/wpsc-php72.conf deleted file mode 100644 index 1abc396..0000000 --- a/docs/files/etc/nginx/common/wpsc-php72.conf +++ /dev/null @@ -1,31 +0,0 @@ -# WPSC NGINX CONFIGURATION -# DO NOT MODIFY, ALL CHANGES LOST AFTER UPDATE EasyEngine (ee) -set $cache_uri $request_uri; -# POST requests and URL with a query string should always go to php -if ($request_method = POST) { - set $cache_uri 'null cache'; -} -if ($query_string != "") { - set $cache_uri 'null cache'; -} -# Don't cache URL containing the following segments -if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|wp-.*\.php|index.php|/feed/|.*sitemap.*\.xml)") { - set $cache_uri 'null cache'; -} -# Don't use the cache for logged in users or recent commenter or customer with items in cart -if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|[a-z0-9]+_items_in_cart") { - set $cache_uri 'null cache'; -} -# Use cached or actual file if they exists, Otherwise pass request to WordPress -location / { - # If we add index.php?$args its break WooCommerce like plugins - # Ref: #330 - try_files /wp-content/cache/supercache/$http_host/$cache_uri/index.html $uri $uri/ /index.php; -} -location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php72; - # Following line is needed by WP Super Cache plugin - fastcgi_param SERVER_NAME $http_host; -} diff --git a/docs/files/etc/nginx/conf.d/cloudflare.conf b/docs/files/etc/nginx/conf.d/cloudflare.conf deleted file mode 100644 index c027573..0000000 --- a/docs/files/etc/nginx/conf.d/cloudflare.conf +++ /dev/null @@ -1,27 +0,0 @@ -# $remote_addr rewriting in case of NGINX behind CloudFlare. -# See also mod_cloudflare Apache module configuration. - -set_real_ip_from 103.21.244.0/22; -set_real_ip_from 103.22.200.0/22; -set_real_ip_from 103.31.4.0/22; -set_real_ip_from 104.16.0.0/12; -set_real_ip_from 108.162.192.0/18; -set_real_ip_from 131.0.72.0/22; -set_real_ip_from 141.101.64.0/18; -set_real_ip_from 162.158.0.0/15; -set_real_ip_from 172.64.0.0/13; -set_real_ip_from 173.245.48.0/20; -set_real_ip_from 188.114.96.0/20; -set_real_ip_from 190.93.240.0/20; -set_real_ip_from 197.234.240.0/22; -set_real_ip_from 198.41.128.0/17; -set_real_ip_from 2400:cb00::/32; -set_real_ip_from 2606:4700::/32; -set_real_ip_from 2803:f800::/32; -set_real_ip_from 2405:b500::/32; -set_real_ip_from 2405:8100::/32; -set_real_ip_from 2c0f:f248::/32; -set_real_ip_from 2a06:98c0::/29; - -real_ip_header CF-Connecting-IP; -#real_ip_header X-Forwarded-For; diff --git a/docs/files/etc/nginx/conf.d/fastcgi.conf b/docs/files/etc/nginx/conf.d/fastcgi.conf deleted file mode 100644 index 3fda8f0..0000000 --- a/docs/files/etc/nginx/conf.d/fastcgi.conf +++ /dev/null @@ -1,19 +0,0 @@ -# FastCGI cache settings -fastcgi_cache_path /var/run/nginx-cache levels=1:2 keys_zone=WORDPRESS:50m inactive=60m; -fastcgi_cache_key "$scheme$request_method$host$request_uri"; -fastcgi_cache_use_stale error timeout invalid_header updating http_500 http_503; -fastcgi_buffers 256 32k; -fastcgi_buffer_size 256k; -fastcgi_connect_timeout 4s; -fastcgi_send_timeout 120s; -fastcgi_busy_buffers_size 512k; -fastcgi_temp_file_write_size 512K; -fastcgi_param SERVER_NAME $http_host; -fastcgi_ignore_headers Cache-Control Expires Set-Cookie; -fastcgi_keep_conn on; - -#Others -open_file_cache max=2000 inactive=20s; -open_file_cache_valid 60s; -open_file_cache_min_uses 5; -open_file_cache_errors off; \ No newline at end of file diff --git a/docs/files/etc/nginx/conf.d/map-wp-fascgi-cache.conf b/docs/files/etc/nginx/conf.d/map-wp-fascgi-cache.conf deleted file mode 100644 index 0b8d630..0000000 --- a/docs/files/etc/nginx/conf.d/map-wp-fascgi-cache.conf +++ /dev/null @@ -1,42 +0,0 @@ -map $http_x_requested_with $http_request_no_cache { - default 0; - XMLHttpRequest 1; -} -map $http_cookie $cookie_no_cache { - default 0; - "~*wordpress_[a-f0-9]+" 1; - "~*wp-postpass" 1; - "~*wordpress_logged_in" 1; - "~*wordpress_no_cache" 1; - "~*comment_author" 1; - "~*woocommerce_items_in_cart" 1; - "~*woocommerce_cart_hash" 1; - "~*wptouch_switch_toogle" 1; - "~*comment_author_email_" 1; -} -map $request_uri $uri_no_cache { - default 0; - "~*/wp-admin/" 1; - "~*/wp-[a-zA-Z0-9-]+.php" 1; - "~*/feed/" 1; - "~*/index.php" 1; - "~*/[a-z0-9_-]+-sitemap([0-9]+)?.xml" 1; - "~*/sitemap(_index)?.xml" 1; - "~*/wp-comments-popup.php" 1; - "~*/wp-links-opml.php" 1; - "~*/wp-locations.php" 1; - "~*/wp-.*.php" 1; - "~*/xmlrpc.php" 1; - "~*/wp-app.php" 1; - "~*/wp-login.php" 1; - "~*/wp-register.php" 1; - "~*/wp-mail.php" 1; -} -map $query_string $query_no_cache { - default 1; - "" 0; -} -map $http_request_no_cache$cookie_no_cache$uri_no_cache$query_no_cache $skip_cache { - default 1; - 0000 0; -} diff --git a/docs/files/etc/nginx/conf.d/upstream.conf b/docs/files/etc/nginx/conf.d/upstream.conf deleted file mode 100644 index 589bf2d..0000000 --- a/docs/files/etc/nginx/conf.d/upstream.conf +++ /dev/null @@ -1,35 +0,0 @@ -# Common upstream settings -upstream php { -# server unix:/run/php5-fpm.sock; -server 127.0.0.1:9000; -} -upstream debug { -# Debug Pool -server 127.0.0.1:9001; -} -# php7.0-fpm -upstream php7 { -server 127.0.0.1:9070; -} - -upstream debug7 { -server 127.0.0.1:9170; -} -# php7.1-fpm -upstream php71 { -server 127.0.0.1:9080; -} -# php7.2-fpm -upstream php72 { -server 127.0.0.1:9090; -} -# redis -upstream redis { - server 127.0.0.1:6379; - keepalive 10; -} -# netdata (optional) -upstream netdata { - server 127.0.0.1:19999; - keepalive 64; -} diff --git a/docs/files/etc/nginx/conf.d/webp.conf b/docs/files/etc/nginx/conf.d/webp.conf deleted file mode 100644 index f724280..0000000 --- a/docs/files/etc/nginx/conf.d/webp.conf +++ /dev/null @@ -1,4 +0,0 @@ -map $http_accept $webp_suffix { - default ""; - "~*webp" ".webp"; -} diff --git a/docs/files/etc/nginx/mime.types b/docs/files/etc/nginx/mime.types deleted file mode 100644 index 8b7a463..0000000 --- a/docs/files/etc/nginx/mime.types +++ /dev/null @@ -1,91 +0,0 @@ - -types { - text/html html htm shtml; - text/css css; - text/xml xml; - image/gif gif; - image/jpeg jpeg jpg; - application/javascript js; - application/atom+xml atom; - application/rss+xml rss; - - text/mathml mml; - text/plain txt; - text/vnd.sun.j2me.app-descriptor jad; - text/vnd.wap.wml wml; - text/x-component htc; - - image/png png; - image/tiff tif tiff; - image/vnd.wap.wbmp wbmp; - image/x-icon ico; - image/x-jng jng; - image/x-ms-bmp bmp; - image/svg+xml svg svgz; - image/webp webp; - - application/font-woff woff; - application/font-woff2 woff2; - application/x-font-ttf ttf; - application/java-archive jar war ear; - application/json json; - application/mac-binhex40 hqx; - application/msword doc; - application/pdf pdf; - application/postscript ps eps ai; - application/rtf rtf; - application/vnd.apple.mpegurl m3u8; - application/vnd.ms-excel xls; - application/vnd.ms-fontobject eot; - application/vnd.ms-powerpoint ppt; - application/vnd.wap.wmlc wmlc; - application/vnd.google-earth.kml+xml kml; - application/vnd.google-earth.kmz kmz; - application/x-7z-compressed 7z; - application/x-cocoa cco; - application/x-java-archive-diff jardiff; - application/x-java-jnlp-file jnlp; - application/x-makeself run; - application/x-perl pl pm; - application/x-pilot prc pdb; - application/x-rar-compressed rar; - application/x-redhat-package-manager rpm; - application/x-sea sea; - application/x-shockwave-flash swf; - application/x-stuffit sit; - application/x-tcl tcl tk; - application/x-x509-ca-cert der pem crt; - application/x-xpinstall xpi; - application/xhtml+xml xhtml; - application/xspf+xml xspf; - application/zip zip; - - application/octet-stream bin exe dll; - application/octet-stream deb; - application/octet-stream dmg; - application/octet-stream iso img; - application/octet-stream msi msp msm; - - application/vnd.openxmlformats-officedocument.wordprocessingml.document docx; - application/vnd.openxmlformats-officedocument.spreadsheetml.sheet xlsx; - application/vnd.openxmlformats-officedocument.presentationml.presentation pptx; - - audio/midi mid midi kar; - audio/mpeg mp3; - audio/ogg ogg; - audio/x-m4a m4a; - audio/x-realaudio ra; - - video/3gpp 3gpp 3gp; - video/mp2t ts; - video/mp4 mp4; - video/mpeg mpeg mpg; - video/quicktime mov; - video/webm webm; - video/x-flv flv; - video/x-m4v m4v; - video/x-mng mng; - video/x-ms-asf asx asf; - video/x-ms-wmv wmv; - video/x-msvideo avi; -} \ No newline at end of file diff --git a/docs/files/etc/nginx/nginx-intermediate.conf b/docs/files/etc/nginx/nginx-intermediate.conf deleted file mode 100644 index 43f40a1..0000000 --- a/docs/files/etc/nginx/nginx-intermediate.conf +++ /dev/null @@ -1,167 +0,0 @@ -user www-data; -worker_processes auto; -worker_cpu_affinity auto; -worker_rlimit_nofile 100000; -pid /run/nginx.pid; - -events -{ - worker_connections 16384; - multi_accept on; - use epoll; -} - -http -{ - ## - # EasyEngine Settings - ## - - sendfile on; - sendfile_max_chunk 512k; - - tcp_nopush on; - tcp_nodelay on; - - keepalive_timeout 8; - keepalive_requests 500; - - lingering_time 20s; - lingering_timeout 5s; - - server_tokens off; - reset_timedout_connection on; - add_header X-Powered-By "EasyEngine v3.8.1 - Optimized by VirtuBox"; - add_header rt-Fastcgi-Cache $upstream_cache_status; - - # Limit Request - limit_req_status 403; - limit_req_zone $remote_addr_ipscrub zone=one:10m rate=1r/s; - - #Simple DOS mitigation - ##Max c/s by ip - #limit_conn_zone $binary_remote_addr zone=limit_per_ip:10m; - #limit_conn limit_per_ip 80; - - ##Max rq/s by ip - #limit_req_zone $binary_remote_addr zone=allips:10m rate=400r/s; - #limit_req zone=allips burst=400 nodelay; - - # Proxy Settings - # set_real_ip_from proxy-server-ip; - # real_ip_header X-Forwarded-For; - - fastcgi_read_timeout 300; - client_max_body_size 100m; - - #See - https://www.nginx.com/blog/thread-pools-boost-performance-9x/ - aio threads; - - # tls dynamic records patch directive - ssl_dyn_rec_enable on; - - # nginx-vts-status module - vhost_traffic_status_zone; - - resolver 8.8.8.8 1.1.1.1 valid=300s; - resolver_timeout 10; - - ## - # GeoIP module configuration, before removing comments - # read the tutorial : https://gist.github.com/VirtuBox/9ed03c9bd9169202c358a8be181b7840 - ## - #geoip_country /usr/share/GeoIP/GeoIP.dat; - #geoip_city /usr/share/GeoIP/GeoIPCity.dat; - - ## - # SSL Settings - ## - # intermediate configuration. tweak to your needs. - ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; - ssl_ciphers 'TLS13+AESGCM+AES128:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS'; - ssl_prefer_server_ciphers on; - ssl_session_cache shared:SSL:50m; - ssl_session_timeout 1d; - ssl_session_tickets off; - ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1; - - ##Common headers for security - more_set_headers "X-Frame-Options : SAMEORIGIN"; - more_set_headers "X-Xss-Protection : 1; mode=block"; - more_set_headers "X-Content-Type-Options : nosniff"; - more_set_headers "Referrer-Policy : strict-origin-when-cross-origin"; - - ## - # Basic Settings - ## - # server_names_hash_bucket_size 64; - # server_name_in_redirect off; - - include /etc/nginx/mime.types; - default_type application/octet-stream; - - ## - # Logging Settings - # access_log disabled for performance - ## - - access_log off; - error_log /var/log/nginx/error.log; - - # Log format Settings - log_format rt_cache '$remote_addr_ipscrub $upstream_response_time $upstream_cache_status [$time_local] ' - '$http_host "$request" $status $body_bytes_sent ' - '"$http_referer" "$http_user_agent" $server_protocol'; - - # ipscrub settings - ipscrub_period_seconds 3600; - - ## - # Gzip Settings - ## - - gzip on; - gzip_disable "msie6"; - - gzip_vary on; - gzip_proxied any; - gzip_comp_level 6; - gzip_buffers 16 8k; - gzip_http_version 1.1; - gzip_types - application/atom+xml - application/javascript - application/json - application/rss+xml - application/vnd.ms-fontobject - application/x-font-ttf - application/x-web-app-manifest+json - application/xhtml+xml - application/xml - font/opentype - image/svg+xml - image/x-icon - text/css - text/plain - text/x-component - text/xml - text/javascript; - - ## - # Brotli Settings - ## - - brotli on; - brotli_static on; - brotli_buffers 16 8k; - brotli_comp_level 6; - brotli_types *; - - - ## - # Virtual Host Configs - ## - include /etc/nginx/conf.d/*.conf; - include /etc/nginx/sites-enabled/*; -} - diff --git a/docs/files/etc/nginx/nginx-tlsv12.conf b/docs/files/etc/nginx/nginx-tlsv12.conf deleted file mode 100644 index f18ab26..0000000 --- a/docs/files/etc/nginx/nginx-tlsv12.conf +++ /dev/null @@ -1,186 +0,0 @@ -user www-data; -worker_processes auto; -worker_cpu_affinity auto; -worker_rlimit_nofile 100000; -pid /run/nginx.pid; - -events -{ - worker_connections 16384; - multi_accept on; - use epoll; -} - -http -{ - ## - # EasyEngine Settings - ## - - sendfile on; - sendfile_max_chunk 512k; - - tcp_nopush on; - tcp_nodelay on; - - keepalive_timeout 8; - keepalive_requests 500; - - lingering_time 20s; - lingering_timeout 5s; - - server_tokens off; - reset_timedout_connection on; - add_header X-Powered-By "EasyEngine v3.8.1 - Optimized by VirtuBox"; - add_header rt-Fastcgi-Cache $upstream_cache_status; - - # Limit Request - limit_req_status 403; - limit_req_zone $remote_addr_ipscrub zone=one:10m rate=1r/s; - - #Simple DOS mitigation - ##Max c/s by ip - #limit_conn_zone $binary_remote_addr zone=limit_per_ip:10m; - #limit_conn limit_per_ip 80; - - ##Max rq/s by ip - #limit_req_zone $binary_remote_addr zone=allips:10m rate=400r/s; - #limit_req zone=allips burst=400 nodelay; - - # Proxy Settings - # set_real_ip_from proxy-server-ip; - # real_ip_header X-Forwarded-For; - - fastcgi_read_timeout 120s; - client_max_body_size 100m; - - #See - https://www.nginx.com/blog/thread-pools-boost-performance-9x/ - aio threads; - - # tls dynamic records patch directive - ssl_dyn_rec_enable on; - - # nginx-vts-status module - vhost_traffic_status_zone; - - resolver 8.8.8.8 1.1.1.1 valid=300s; - resolver_timeout 10; - - ## - # GeoIP module configuration, before removing comments - # read the tutorial : https://gist.github.com/VirtuBox/9ed03c9bd9169202c358a8be181b7840 - ## - #geoip_country /usr/share/GeoIP/GeoIP.dat; - #geoip_city /usr/share/GeoIP/GeoIPCity.dat; - - ## - # SSL Settings - ## - ssl_protocols TLSv1.2; - ssl_ciphers 'EECDH+CHACHA20:EECDH+AESGCM'; - ssl_prefer_server_ciphers on; - ssl_session_cache shared:SSL:50m; - ssl_session_timeout 1d; - ssl_session_tickets off; - ssl_ecdh_curve X25519:P-521:P-384:P-256; - - ##Common headers for security - more_set_headers "X-Frame-Options : SAMEORIGIN"; - more_set_headers "X-Xss-Protection : 1; mode=block"; - more_set_headers "X-Content-Type-Options : nosniff"; - more_set_headers "Referrer-Policy : strict-origin-when-cross-origin"; - ## - # Basic Settings - ## - # server_names_hash_bucket_size 64; - # server_name_in_redirect off; - - include /etc/nginx/mime.types; - default_type application/octet-stream; - - ## - # Logging Settings - # access_log disabled for performance - ## - - access_log off; - error_log /var/log/nginx/error.log; - - # Log format Settings - log_format rt_cache '$remote_addr_ipscrub $upstream_response_time $upstream_cache_status [$time_local] ' - '$http_host "$request" $status $body_bytes_sent ' - '"$http_referer" "$http_user_agent" $server_protocol'; - - # ipscrub settings - ipscrub_period_seconds 3600; - - ## - # Gzip Settings - ## - - gzip on; - gzip_disable "msie6"; - - gzip_vary on; - gzip_proxied any; - gzip_comp_level 6; - gzip_buffers 16 8k; - gzip_http_version 1.1; - gzip_types - application/atom+xml - application/javascript - application/json - application/rss+xml - application/vnd.ms-fontobject - application/x-font-ttf - application/x-web-app-manifest+json - application/xhtml+xml - application/xml - font/opentype - image/svg+xml - image/x-icon - text/css - text/plain - text/x-component - text/xml - text/javascript; - - ## - # Brotli Settings - ## - - brotli on; - brotli_static on; - brotli_buffers 16 8k; - brotli_comp_level 6; - brotli_types *; - - - ## - # Virtual Host Configs - ## - include /etc/nginx/conf.d/*.conf; - include /etc/nginx/sites-enabled/*; -} - - -#mail { -# # See sample authentication script at: -# # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript -# -# # auth_http localhost/auth.php; -# # pop3_capabilities "TOP" "USER"; -# # imap_capabilities "IMAP4rev1" "UIDPLUS"; -# -# server { -# listen localhost:110; -# protocol pop3; -# proxy on; -# } -# -# server { -# listen localhost:143; -# protocol imap; -# proxy on; -# } -#} \ No newline at end of file diff --git a/docs/files/etc/nginx/nginx.conf b/docs/files/etc/nginx/nginx.conf deleted file mode 100644 index 42d81f0..0000000 --- a/docs/files/etc/nginx/nginx.conf +++ /dev/null @@ -1,188 +0,0 @@ -user www-data; -worker_processes auto; -worker_cpu_affinity auto; -worker_rlimit_nofile 100000; -pid /run/nginx.pid; - -events -{ - worker_connections 16384; - multi_accept on; - use epoll; -} - -http -{ - ## - # EasyEngine Settings - ## - - sendfile on; - sendfile_max_chunk 512k; - - tcp_nopush on; - tcp_nodelay on; - - keepalive_timeout 8; - keepalive_requests 500; - - lingering_time 20s; - lingering_timeout 5s; - - server_tokens off; - reset_timedout_connection on; - add_header X-Powered-By "EasyEngine v3.8.1 - Optimized by VirtuBox"; - add_header rt-Fastcgi-Cache $upstream_cache_status; - - # Limit Request - limit_req_status 403; - limit_req_zone $remote_addr_ipscrub zone=one:10m rate=1r/s; - - #Simple DOS mitigation - ##Max c/s by ip - #limit_conn_zone $binary_remote_addr zone=limit_per_ip:10m; - #limit_conn limit_per_ip 80; - - ##Max rq/s by ip - #limit_req_zone $binary_remote_addr zone=allips:10m rate=400r/s; - #limit_req zone=allips burst=400 nodelay; - - # Proxy Settings - # set_real_ip_from proxy-server-ip; - # real_ip_header X-Forwarded-For; - - fastcgi_read_timeout 120s; - client_max_body_size 100m; - - #See - https://www.nginx.com/blog/thread-pools-boost-performance-9x/ - aio threads; - - # tls dynamic records patch directive - ssl_dyn_rec_enable on; - - # nginx-vts-status module - vhost_traffic_status_zone; - - # dns resolver for oscp - resolver 8.8.8.8 1.1.1.1 valid=300s; - resolver_timeout 10; - - ## - # GeoIP module configuration, before removing comments - # read the tutorial : https://gist.github.com/VirtuBox/9ed03c9bd9169202c358a8be181b7840 - ## - #geoip_country /usr/share/GeoIP/GeoIP.dat; - #geoip_city /usr/share/GeoIP/GeoIPCity.dat; - - ## - # SSL Settings - ## - ssl_protocols TLSv1.2 TLSv1.3; - ssl_ciphers 'TLS13+AESGCM+AES128:EECDH+AES128'; - ssl_prefer_server_ciphers on; - ssl_session_cache shared:SSL:50m; - ssl_session_timeout 1d; - ssl_session_tickets off; - ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1; - - ##Common headers for security - more_set_headers "X-Frame-Options : SAMEORIGIN"; - more_set_headers "X-Xss-Protection : 1; mode=block"; - more_set_headers "X-Content-Type-Options : nosniff"; - more_set_headers "Referrer-Policy : strict-origin-when-cross-origin"; - - ## - # Basic Settings - ## - # server_names_hash_bucket_size 64; - # server_name_in_redirect off; - - include /etc/nginx/mime.types; - default_type application/octet-stream; - - ## - # Logging Settings - # access_log disabled for performance - ## - - access_log off; - error_log /var/log/nginx/error.log; - - # Log format Settings - log_format rt_cache '$remote_addr_ipscrub $upstream_response_time $upstream_cache_status [$time_local] ' - '$http_host "$request" $status $body_bytes_sent ' - '"$http_referer" "$http_user_agent" $server_protocol'; - - # ipscrub settings - ipscrub_period_seconds 3600; - - ## - # Gzip Settings - ## - - gzip on; - gzip_disable "msie6"; - - gzip_vary on; - gzip_proxied any; - gzip_comp_level 6; - gzip_buffers 16 8k; - gzip_http_version 1.1; - gzip_types - application/atom+xml - application/javascript - application/json - application/rss+xml - application/vnd.ms-fontobject - application/x-font-ttf - application/x-web-app-manifest+json - application/xhtml+xml - application/xml - font/opentype - image/svg+xml - image/x-icon - text/css - text/plain - text/x-component - text/xml - text/javascript; - - ## - # Brotli Settings - ## - - brotli on; - brotli_static on; - brotli_buffers 16 8k; - brotli_comp_level 6; - brotli_types *; - - - ## - # Virtual Host Configs - ## - include /etc/nginx/conf.d/*.conf; - include /etc/nginx/sites-enabled/*; -} - - -#mail { -# # See sample authentication script at: -# # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript -# -# # auth_http localhost/auth.php; -# # pop3_capabilities "TOP" "USER"; -# # imap_capabilities "IMAP4rev1" "UIDPLUS"; -# -# server { -# listen localhost:110; -# protocol pop3; -# proxy on; -# } -# -# server { -# listen localhost:143; -# protocol imap; -# proxy on; -# } -#} diff --git a/docs/files/etc/nginx/proxy_params b/docs/files/etc/nginx/proxy_params deleted file mode 100644 index 298004d..0000000 --- a/docs/files/etc/nginx/proxy_params +++ /dev/null @@ -1,13 +0,0 @@ -proxy_set_header Host $http_host; -proxy_set_header X-Real-IP $remote_addr; -proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; -proxy_set_header X-Forwarded-Proto $scheme; - -proxy_buffering on; -proxy_buffer_size 128k; -proxy_buffers 256 16k; -proxy_busy_buffers_size 256k; -proxy_temp_file_write_size 256k; -proxy_max_temp_file_size 0; -proxy_read_timeout 3000; -proxy_send_timeout 3000; diff --git a/docs/files/etc/nginx/sites-available/22222 b/docs/files/etc/nginx/sites-available/22222 deleted file mode 100644 index b0dff7d..0000000 --- a/docs/files/etc/nginx/sites-available/22222 +++ /dev/null @@ -1,90 +0,0 @@ -# EasyEngine admin NGINX CONFIGURATION - -server { - - listen 22222 default_server ssl http2; - - access_log off; - error_log /var/log/nginx/22222.error.log; - - ssl_certificate /var/www/22222/cert/22222.crt; - ssl_certificate_key /var/www/22222/cert/22222.key; - - # Force HTTP to HTTPS - error_page 497 =200 https://$host:22222$request_uri; - - root /var/www/22222/htdocs; - index index.php index.htm index.html; - - # Turn on directory listing - autoindex on; - - # HTTP Authentication on port 22222 - include common/acl.conf; - - location / { - try_files $uri $uri/ /index.php?$args; - } - - # nginx-vts-status - location /vts_status { - vhost_traffic_status_display; - vhost_traffic_status_display_format html; - } - - # Display menu at location /fpm/status/ - location = /fpm/status/ {} - - location ~ /fpm/status/(.*) { - try_files $uri =404; - include fastcgi_params; - fastcgi_param SCRIPT_NAME /status; - fastcgi_pass $1; - } - - location ~ \.php$ { - try_files $uri =404; - include fastcgi_params; - fastcgi_pass php7; - } - - # ViMbAdmin Rules - location = /vimbadmin/ { - return 301 $scheme://$host:22222/vimbadmin/public/; - } - - - - location ~* /vimbadmin/public/(.*)/(.*) { - root /var/www/22222/htdocs/vimbadmin/public; - try_files $uri $uri/ /vimbadmin/public/index.php?$args; - } - - location ~* /vimbadmin/public/(.*) { - root /var/www/22222/htdocs/vimbadmin/public; - try_files $uri $uri/ /vimbadmin/public/index.php?$args; - } - - location /netdata { - return 301 /netdata/; - } - - location ~ /netdata/(?.*) { - proxy_redirect off; - proxy_set_header Host $host; - - proxy_set_header X-Forwarded-Host $host; - proxy_set_header X-Forwarded-Server $host; - proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; - proxy_http_version 1.1; - proxy_pass_request_headers on; - proxy_set_header Connection "keep-alive"; - proxy_store off; - proxy_pass http://netdata/$ndpath$is_args$args; - - gzip on; - gzip_proxied any; - gzip_types *; - } - -} diff --git a/docs/files/etc/nginx/sites-available/default b/docs/files/etc/nginx/sites-available/default deleted file mode 100644 index a936715..0000000 --- a/docs/files/etc/nginx/sites-available/default +++ /dev/null @@ -1,112 +0,0 @@ -## -# You should look at the following URL's in order to grasp a solid understanding -# of Nginx configuration files in order to fully unleash the power of Nginx. -# http://wiki.nginx.org/Pitfalls -# http://wiki.nginx.org/QuickStart -# http://wiki.nginx.org/Configuration -# -# Generally, you will want to move this file somewhere, and start with a clean -# file but keep this around for reference. Or just disable in sites-enabled. -# -# Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. -## - -# Default server configuration -# - -server { - listen 80 default_server; - listen [::]:80 default_server; - - # SSL configuration - # - # listen 443 ssl default_server; - # listen [::]:443 ssl default_server; - # - # Self signed certs generated by the ssl-cert package - # Don't use them in a production server! - # include snippets/snakeoil.conf; - # - # ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # don’t use SSLv3 ref: POODLE - # ssl_ciphers HIGH:!aNULL:!MD5; - # ssl_prefer_server_ciphers on; - - root /var/www/html; - - # Add index.php to the list if you are using PHP - index index.html index.htm index.nginx-debian.html; - - server_name _; - - access_log off; - error_log /var/log/nginx/default.error.log; - - location / { - # First attempt to serve request as file, then - # as directory, then fall back to displaying a 404. - try_files $uri $uri/ =404; - } - -location /stub_status { - stub_status on; - access_log off; - allow 127.0.0.1; - deny all; -} - - -# Status pages -location /nginx_status { - stub_status on; - access_log off; - allow 127.0.0.1; - deny all; -} - -# phpfpm pool monitoring -location ~ ^/(status|ping) { - include fastcgi_params; - fastcgi_pass php7; - include common/acl.conf; -} - - - - # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000 - # - #location ~ \.php$ { - # include snippets/fastcgi-php.conf; - # - # # With php5-cgi alone: - # fastcgi_pass 127.0.0.1:9000; - # # With php5-fpm: - # fastcgi_pass unix:/var/run/php5-fpm.sock; - #} - - # deny access to .htaccess files, if Apache's document root - # concurs with nginx's one - # - #location ~ /\.ht { - # deny all; - #} -} - - -# Virtual Host configuration for example.com -# -# You can move that to a different file under sites-available/ and symlink that -# to sites-enabled/ to enable it. -# -#server { -# listen 80; -# listen [::]:80; -# -# server_name example.com; -# -# root /var/www/example.com; -# index index.html; -# -# location / { -# try_files $uri $uri/ =404; -# } -#} diff --git a/docs/files/etc/ntp.conf b/docs/files/etc/ntp.conf deleted file mode 100644 index e1a900a..0000000 --- a/docs/files/etc/ntp.conf +++ /dev/null @@ -1,72 +0,0 @@ -# /etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help - -driftfile /var/lib/ntp/ntp.drift - -# Enable this if you want statistics to be logged. -#statsdir /var/log/ntpstats/ - -statistics loopstats peerstats clockstats -filegen loopstats file loopstats type day enable -filegen peerstats file peerstats type day enable -filegen clockstats file clockstats type day enable - -# Specify one or more NTP servers. - -# Use servers from the NTP Pool Project. Approved by Ubuntu Technical Board -# on 2011-02-08 (LP: #104525). See http://www.pool.ntp.org/join.html for -# more information. -#pool 0.ubuntu.pool.ntp.org iburst -#pool 1.ubuntu.pool.ntp.org iburst -#pool 2.ubuntu.pool.ntp.org iburst -#pool 3.ubuntu.pool.ntp.org iburst - -server 0.fr.pool.ntp.org -server 1.fr.pool.ntp.org -server 2.fr.pool.ntp.org -server 3.fr.pool.ntp.org - - -# Use Ubuntu's ntp server as a fallback. -#pool ntp.ubuntu.com - -# Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for -# details. The web page -# might also be helpful. -# -# Note that "restrict" applies to both servers and clients, so a configuration -# that might be intended to block requests from certain clients could also end -# up blocking replies from your own upstream servers. - -# By default, exchange time with everybody, but don't allow configuration. -restrict -4 default kod notrap nomodify nopeer noquery limited -restrict -6 default kod notrap nomodify nopeer noquery limited - -# Local users may interrogate the ntp server more closely. -restrict 127.0.0.1 -restrict ::1 - -# Needed for adding pool entries -restrict source notrap nomodify noquery - -# Clients from this (example!) subnet have unlimited access, but only if -# cryptographically authenticated. -#restrict 192.168.123.0 mask 255.255.255.0 notrust - - -# If you want to provide time to your local subnet, change the next line. -# (Again, the address is an example only.) -#broadcast 192.168.123.255 - -# If you want to listen to time broadcasts on your local subnet, de-comment the -# next lines. Please do this only if you trust everybody on the network! -#disable auth -#broadcastclient - -#Changes recquired to use pps synchonisation as explained in documentation: -#http://www.ntp.org/ntpfaq/NTP-s-config-adv.htm#AEN3918 - -#server 127.127.8.1 mode 135 prefer # Meinberg GPS167 with PPS -#fudge 127.127.8.1 time1 0.0042 # relative to PPS for my hardware - -#server 127.127.22.1 # ATOM(PPS) -#fudge 127.127.22.1 flag3 1 # enable PPS API diff --git a/docs/files/etc/php/7.0/cli/php.ini b/docs/files/etc/php/7.0/cli/php.ini deleted file mode 100644 index 4f45177..0000000 --- a/docs/files/etc/php/7.0/cli/php.ini +++ /dev/null @@ -1,191 +0,0 @@ -[PHP] -engine = On -short_open_tag = Off -precision = 14 -output_buffering = 8096 -zlib.output_compression = Off -implicit_flush = Off -unserialize_callback_func = -serialize_precision = 17 -disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, -disable_classes = -zend.enable_gc = On -expose_php = Off -max_execution_time = 300 -max_input_time = 600 -max_input_vars = 10000 -memory_limit = -1 -error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT -display_errors = Off -display_startup_errors = Off -log_errors = On -log_errors_max_len = 1024 -ignore_repeated_errors = Off -ignore_repeated_source = Off -report_memleaks = On -track_errors = Off -html_errors = On -variables_order = "GPCS" -request_order = "GP" -register_argc_argv = Off -auto_globals_jit = On -post_max_size = 128M -auto_prepend_file = -auto_append_file = -default_mimetype = "text/html" -default_charset = "UTF-8" -doc_root = -user_dir = -enable_dl = Off -file_uploads = On -upload_max_filesize = 128M -max_file_uploads = 20 -allow_url_fopen = On -allow_url_include = Off -default_socket_timeout = 60 - -[CLI Server] -cli_server.color = On - -[Date] -date.timezone = Europe/Paris - -[filter] - -[iconv] - -[intl] - -[sqlite3] - -[Pcre] - -[Pdo] - -[Pdo_mysql] -pdo_mysql.cache_size = 2000 -pdo_mysql.default_socket = - -[Phar] - -[mail function] -smtp = localhost -smtp_port = 25 -mail.add_x_header = On - -[SQL] -sql.safe_mode = Off - -[ODBC] -odbc.allow_persistent = On -odbc.check_persistent = On -odbc.max_persistent = -1 -odbc.max_links = -1 -odbc.defaultlrl = 4096 -odbc.defaultbinmode = 1 - -[Interbase] -ibase.allow_persistent = 1 -ibase.max_persistent = -1 -ibase.max_links = -1 -ibase.timestampformat = "%Y-%m-%d %H:%M:%S" -ibase.dateformat = "%Y-%m-%d" -ibase.timeformat = "%H:%M:%S" - -[MySQLi] -mysqli.max_persistent = -1 -mysqli.allow_persistent = On -mysqli.max_links = -1 -mysqli.cache_size = 2000 -mysqli.default_port = 3306 -mysqli.default_socket = -mysqli.default_host = -mysqli.default_user = -mysqli.default_pw = -mysqli.reconnect = Off - -[mysqlnd] -mysqlnd.collect_statistics = On -mysqlnd.collect_memory_statistics = Off - -[OCI8] - -[OCI8] - -[PostgreSQL] -pgsql.allow_persistent = On -pgsql.auto_reset_persistent = Off -pgsql.max_persistent = -1 -pgsql.max_links = -1 -pgsql.ignore_notice = 0 -pgsql.log_notice = 0 - -[bcmath] -bcmath.scale = 0 - -[browscap] - -[Session] -session.save_handler = files -session.use_strict_mode = 0 -session.use_cookies = 1 -session.use_only_cookies = 1 -session.name = PHPSESSID -session.auto_start = 0 -session.cookie_lifetime = 0 -session.cookie_path = / -session.cookie_domain = -session.cookie_httponly = -session.serialize_handler = php -session.gc_probability = 0 -session.gc_divisor = 1000 -session.gc_maxlifetime = 1440 -session.referer_check = -session.cache_limiter = nocache -session.cache_expire = 180 -session.use_trans_sid = 0 - -url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry" - -[Assertion] -zend.assertions = -1 - -[COM] - -[mbstring] - -[gd] - -[exif] - -[Tidy] -tidy.clean_output = Off - -[soap] -soap.wsdl_cache_enabled = 1 -soap.wsdl_cache_dir = "/tmp" -soap.wsdl_cache_ttl = 86400 -soap.wsdl_cache_limit = 5 - -[sysvshm] - -[ldap] -ldap.max_links = -1 - -[mcrypt] - -[dba] - -[opcache] -opcache.enable=1 -opcache.enable_cli=1 -opcache.interned_strings_buffer=8 -opcache.max_accelerated_files=10000 -opcache.memory_consumption=256 -opcache.save_comments=1 -opcache.revalidate_freq=1 - - -[curl] - -[openssl] diff --git a/docs/files/etc/php/7.0/fpm/php.ini b/docs/files/etc/php/7.0/fpm/php.ini deleted file mode 100644 index 2947c89..0000000 --- a/docs/files/etc/php/7.0/fpm/php.ini +++ /dev/null @@ -1,191 +0,0 @@ -[PHP] -engine = On -short_open_tag = Off -precision = 14 -output_buffering = 8096 -zlib.output_compression = Off -implicit_flush = Off -unserialize_callback_func = -serialize_precision = 17 -disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, -disable_classes = -zend.enable_gc = On -expose_php = Off -max_execution_time = 300 -max_input_time = 600 -max_input_vars = 10000 -memory_limit = 256M -error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT -display_errors = Off -display_startup_errors = Off -log_errors = On -log_errors_max_len = 1024 -ignore_repeated_errors = Off -ignore_repeated_source = Off -report_memleaks = On -track_errors = Off -html_errors = On -variables_order = "GPCS" -request_order = "GP" -register_argc_argv = Off -auto_globals_jit = On -post_max_size = 128M -auto_prepend_file = -auto_append_file = -default_mimetype = "text/html" -default_charset = "UTF-8" -doc_root = -user_dir = -enable_dl = Off -file_uploads = On -upload_max_filesize = 128M -max_file_uploads = 20 -allow_url_fopen = On -allow_url_include = Off -default_socket_timeout = 60 - -[CLI Server] -cli_server.color = On - -[Date] -date.timezone = Europe/Paris - -[filter] - -[iconv] - -[intl] - -[sqlite3] - -[Pcre] - -[Pdo] - -[Pdo_mysql] -pdo_mysql.cache_size = 2000 -pdo_mysql.default_socket = - -[Phar] - -[mail function] -smtp = localhost -smtp_port = 25 -mail.add_x_header = On - -[SQL] -sql.safe_mode = Off - -[ODBC] -odbc.allow_persistent = On -odbc.check_persistent = On -odbc.max_persistent = -1 -odbc.max_links = -1 -odbc.defaultlrl = 4096 -odbc.defaultbinmode = 1 - -[Interbase] -ibase.allow_persistent = 1 -ibase.max_persistent = -1 -ibase.max_links = -1 -ibase.timestampformat = "%Y-%m-%d %H:%M:%S" -ibase.dateformat = "%Y-%m-%d" -ibase.timeformat = "%H:%M:%S" - -[MySQLi] -mysqli.max_persistent = -1 -mysqli.allow_persistent = On -mysqli.max_links = -1 -mysqli.cache_size = 2000 -mysqli.default_port = 3306 -mysqli.default_socket = -mysqli.default_host = -mysqli.default_user = -mysqli.default_pw = -mysqli.reconnect = Off - -[mysqlnd] -mysqlnd.collect_statistics = On -mysqlnd.collect_memory_statistics = Off - -[OCI8] - -[OCI8] - -[PostgreSQL] -pgsql.allow_persistent = On -pgsql.auto_reset_persistent = Off -pgsql.max_persistent = -1 -pgsql.max_links = -1 -pgsql.ignore_notice = 0 -pgsql.log_notice = 0 - -[bcmath] -bcmath.scale = 0 - -[browscap] - -[Session] -session.save_handler = files -session.use_strict_mode = 0 -session.use_cookies = 1 -session.use_only_cookies = 1 -session.name = PHPSESSID -session.auto_start = 0 -session.cookie_lifetime = 0 -session.cookie_path = / -session.cookie_domain = -session.cookie_httponly = -session.serialize_handler = php -session.gc_probability = 0 -session.gc_divisor = 1000 -session.gc_maxlifetime = 1440 -session.referer_check = -session.cache_limiter = nocache -session.cache_expire = 180 -session.use_trans_sid = 0 - -url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry" - -[Assertion] -zend.assertions = -1 - -[COM] - -[mbstring] - -[gd] - -[exif] - -[Tidy] -tidy.clean_output = Off - -[soap] -soap.wsdl_cache_enabled = 1 -soap.wsdl_cache_dir = "/tmp" -soap.wsdl_cache_ttl = 86400 -soap.wsdl_cache_limit = 5 - -[sysvshm] - -[ldap] -ldap.max_links = -1 - -[mcrypt] - -[dba] - -[opcache] -opcache.enable=1 -opcache.enable_cli=1 -opcache.interned_strings_buffer=8 -opcache.max_accelerated_files=10000 -opcache.memory_consumption=256 -opcache.save_comments=1 -opcache.revalidate_freq=1 - - -[curl] - -[openssl] diff --git a/docs/files/etc/php/7.1/cli/php.ini b/docs/files/etc/php/7.1/cli/php.ini deleted file mode 100644 index 3b5048e..0000000 --- a/docs/files/etc/php/7.1/cli/php.ini +++ /dev/null @@ -1,190 +0,0 @@ -[PHP] - -engine = On -short_open_tag = Off -precision = 14 -output_buffering = 4096 -zlib.output_compression = Off -implicit_flush = Off -unserialize_callback_func = -serialize_precision = -1 -disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals, -disable_classes = -zend.enable_gc = On -expose_php = Off -max_execution_time = 300 -max_input_time = 600 -max_input_vars = 20000 -memory_limit = -1 -error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT -display_errors = Off -display_startup_errors = Off -log_errors = On -log_errors_max_len = 1024 -ignore_repeated_errors = Off -ignore_repeated_source = Off -report_memleaks = On -track_errors = Off -html_errors = On -variables_order = "GPCS" -request_order = "GP" -register_argc_argv = Off -auto_globals_jit = On -post_max_size = 128M -auto_prepend_file = -auto_append_file = -default_mimetype = "text/html" -default_charset = "UTF-8" -doc_root = -user_dir = -enable_dl = Off -file_uploads = On -upload_max_filesize = 128M -max_file_uploads = 20 -allow_url_fopen = On -allow_url_include = Off -default_socket_timeout = 60 - -[CLI Server] -cli_server.color = On - -[Date] -date.timezone = Europe/Paris - -[filter] - -[iconv] - -[intl] - -[sqlite3] - -[Pcre] - -[Pdo] - -[Pdo_mysql] -pdo_mysql.cache_size = 2000 -pdo_mysql.default_socket= - -[Phar] - -[mail function] -SMTP = localhost -smtp_port = 25 -mail.add_x_header = On - -[SQL] -sql.safe_mode = Off - -[ODBC] -odbc.allow_persistent = On -odbc.check_persistent = On -odbc.max_persistent = -1 -odbc.max_links = -1 -odbc.defaultlrl = 4096 -odbc.defaultbinmode = 1 - -[Interbase] -ibase.allow_persistent = 1 -ibase.max_persistent = -1 -ibase.max_links = -1 -ibase.timestampformat = "%Y-%m-%d %H:%M:%S" -ibase.dateformat = "%Y-%m-%d" -ibase.timeformat = "%H:%M:%S" - -[MySQLi] -mysqli.max_persistent = -1 -mysqli.allow_persistent = On -mysqli.max_links = -1 -mysqli.cache_size = 2000 -mysqli.default_port = 3306 -mysqli.default_socket = -mysqli.default_host = -mysqli.default_user = -mysqli.default_pw = -mysqli.reconnect = Off - -[mysqlnd] -mysqlnd.collect_statistics = On -mysqlnd.collect_memory_statistics = Off - -[OCI8] - -[PostgreSQL] -pgsql.allow_persistent = On -pgsql.auto_reset_persistent = Off -pgsql.max_persistent = -1 -pgsql.max_links = -1 -pgsql.ignore_notice = 0 -pgsql.log_notice = 0 - -[bcmath] -bcmath.scale = 0 - -[browscap] - -[Session] -session.save_handler = files -session.use_strict_mode = 0 -session.use_cookies = 1 -session.cookie_secure = 1 -session.use_only_cookies = 1 -session.name = PHPSESSID -session.auto_start = 0 -session.cookie_lifetime = 0 -session.cookie_path = / -session.cookie_domain = -session.cookie_httponly = 1 -session.serialize_handler = php -session.gc_probability = 0 -session.gc_divisor = 1000 -session.gc_maxlifetime = 1440 -session.referer_check = -session.cache_limiter = nocache -session.cache_expire = 180 -session.use_trans_sid = 0 -session.sid_length = 26 -session.trans_sid_tags = "a=href,area=href,frame=src,form=" -session.sid_bits_per_character = 5 - -[Assertion] -zend.assertions = -1 - -[COM] - -[mbstring] - -[gd] - -[exif] - -[Tidy] -tidy.clean_output = Off - -[soap] -soap.wsdl_cache_enabled=1 -soap.wsdl_cache_dir="/tmp" -soap.wsdl_cache_ttl=86400 -soap.wsdl_cache_limit = 5 - -[sysvshm] - -[ldap] -ldap.max_links = -1 - -[mcrypt] - -[dba] - -[opcache] -opcache.enable=1 -opcache.enable_cli=1 -opcache.interned_strings_buffer=8 -opcache.max_accelerated_files=10000 -opcache.memory_consumption=256 -opcache.save_comments=1 -opcache.revalidate_freq=1 - -[curl] -[openssl] diff --git a/docs/files/etc/php/7.1/fpm/php.ini b/docs/files/etc/php/7.1/fpm/php.ini deleted file mode 100644 index 86970bf..0000000 --- a/docs/files/etc/php/7.1/fpm/php.ini +++ /dev/null @@ -1,191 +0,0 @@ -[PHP] - -engine = On -short_open_tag = Off -precision = 14 -output_buffering = 4096 -zlib.output_compression = Off -implicit_flush = Off -unserialize_callback_func = -serialize_precision = -1 -disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals, -disable_classes = -zend.enable_gc = On -expose_php = Off -max_execution_time = 300 -max_input_time = 600 -max_input_vars = 10000 -memory_limit = 256M -error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT -display_errors = Off -display_startup_errors = Off -log_errors = On -log_errors_max_len = 1024 -ignore_repeated_errors = Off -ignore_repeated_source = Off -report_memleaks = On -track_errors = Off -html_errors = On -variables_order = "GPCS" -request_order = "GP" -register_argc_argv = Off -auto_globals_jit = On -post_max_size = 128M -auto_prepend_file = -auto_append_file = -default_mimetype = "text/html" -default_charset = "UTF-8" -doc_root = -user_dir = -enable_dl = Off -file_uploads = On -upload_max_filesize = 128M -max_file_uploads = 20 -allow_url_fopen = On -allow_url_include = Off -default_socket_timeout = 60 - -[CLI Server] -cli_server.color = On - -[Date] -date.timezone = Europe/Paris - -[filter] - -[iconv] - -[intl] - -[sqlite3] - -[Pcre] - -[Pdo] - -[Pdo_mysql] -pdo_mysql.cache_size = 2000 -pdo_mysql.default_socket= - -[Phar] - -[mail function] -SMTP = localhost -smtp_port = 25 -mail.add_x_header = On - -[SQL] -sql.safe_mode = Off - -[ODBC] -odbc.allow_persistent = On -odbc.check_persistent = On -odbc.max_persistent = -1 -odbc.max_links = -1 -odbc.defaultlrl = 4096 -odbc.defaultbinmode = 1 - -[Interbase] -ibase.allow_persistent = 1 -ibase.max_persistent = -1 -ibase.max_links = -1 -ibase.timestampformat = "%Y-%m-%d %H:%M:%S" -ibase.dateformat = "%Y-%m-%d" -ibase.timeformat = "%H:%M:%S" - -[MySQLi] -mysqli.max_persistent = -1 -mysqli.allow_persistent = On -mysqli.max_links = -1 -mysqli.cache_size = 2000 -mysqli.default_port = 3306 -mysqli.default_socket = -mysqli.default_host = -mysqli.default_user = -mysqli.default_pw = -mysqli.reconnect = Off - -[mysqlnd] -mysqlnd.collect_statistics = On -mysqlnd.collect_memory_statistics = Off - -[OCI8] - -[PostgreSQL] -pgsql.allow_persistent = On -pgsql.auto_reset_persistent = Off -pgsql.max_persistent = -1 -pgsql.max_links = -1 -pgsql.ignore_notice = 0 -pgsql.log_notice = 0 - -[bcmath] -bcmath.scale = 0 - -[browscap] - -[Session] -session.save_handler = files -session.use_strict_mode = 0 -session.use_cookies = 1 -session.cookie_secure = 1 -session.use_only_cookies = 1 -session.name = PHPSESSID -session.auto_start = 0 -session.cookie_lifetime = 0 -session.cookie_path = / -session.cookie_domain = -session.cookie_httponly = 1 -session.serialize_handler = php -session.gc_probability = 0 -session.gc_divisor = 1000 -session.gc_maxlifetime = 1440 -session.referer_check = -session.cache_limiter = nocache -session.cache_expire = 180 -session.use_trans_sid = 0 -session.sid_length = 26 -session.trans_sid_tags = "a=href,area=href,frame=src,form=" -session.sid_bits_per_character = 5 - -[Assertion] -zend.assertions = -1 - -[COM] - -[mbstring] - -[gd] - -[exif] - -[Tidy] -tidy.clean_output = Off - -[soap] -soap.wsdl_cache_enabled=1 -soap.wsdl_cache_dir="/tmp" -soap.wsdl_cache_ttl=86400 -soap.wsdl_cache_limit = 5 - -[sysvshm] - -[ldap] -ldap.max_links = -1 - -[mcrypt] - -[dba] - -[opcache] -opcache.enable=1 -opcache.enable_cli=1 -opcache.interned_strings_buffer=8 -opcache.max_accelerated_files=10000 -opcache.memory_consumption=256 -opcache.save_comments=1 -opcache.revalidate_freq=1 - -[curl] - -[openssl] diff --git a/docs/files/etc/php/7.1/fpm/pool.d/www.conf b/docs/files/etc/php/7.1/fpm/pool.d/www.conf deleted file mode 100644 index 93d9317..0000000 --- a/docs/files/etc/php/7.1/fpm/pool.d/www.conf +++ /dev/null @@ -1,15 +0,0 @@ -[www] -user = www-data -group = www-data -listen = 127.0.0.1:9080 -listen.owner = www-data -listen.group = www-data -pm = ondemand -pm.max_children = 100 -pm.start_servers = 20 -pm.min_spare_servers = 10 -pm.max_spare_servers = 30 -ping.path = /ping -pm.status_path = /status -pm.max_requests = 500 -request_terminate_timeout = 300 diff --git a/docs/files/etc/php/7.2/cli/php.ini b/docs/files/etc/php/7.2/cli/php.ini deleted file mode 100644 index 0a992d9..0000000 --- a/docs/files/etc/php/7.2/cli/php.ini +++ /dev/null @@ -1,185 +0,0 @@ -[PHP] - -engine = On -short_open_tag = Off -precision = 14 -output_buffering = 4096 -zlib.output_compression = Off -implicit_flush = Off -unserialize_callback_func = -serialize_precision = -1 -disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals, -disable_classes = -zend.enable_gc = On -expose_php = Off -max_execution_time = 300 -max_input_vars = 10000 -max_input_time = 600 -memory_limit = -1 -error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT -display_errors = Off -display_startup_errors = Off -log_errors = On -log_errors_max_len = 1024 -ignore_repeated_errors = Off -ignore_repeated_source = Off -report_memleaks = On -html_errors = On -variables_order = "GPCS" -request_order = "GP" -register_argc_argv = Off -auto_globals_jit = On -post_max_size = 128M -auto_prepend_file = -auto_append_file = -default_mimetype = "text/html" -default_charset = "UTF-8" -doc_root = -user_dir = -enable_dl = Off -file_uploads = On -upload_max_filesize = 128M -max_file_uploads = 20 -allow_url_fopen = On -allow_url_include = Off -default_socket_timeout = 60 - -[CLI Server] -cli_server.color = On - -[Date] -date.timezone = Europe/Paris - -[filter] - -[iconv] - -[intl] - -[sqlite3] - -[Pcre] - -[Pdo] - -[Pdo_mysql] -pdo_mysql.cache_size = 2000 -pdo_mysql.default_socket= - -[Phar] - -[mail function] -SMTP = localhost -smtp_port = 25 -mail.add_x_header = On - -[ODBC] -odbc.allow_persistent = On -odbc.check_persistent = On -odbc.max_persistent = -1 -odbc.max_links = -1 -odbc.defaultlrl = 4096 -odbc.defaultbinmode = 1 - -[Interbase] -ibase.allow_persistent = 1 -ibase.max_persistent = -1 -ibase.max_links = -1 -ibase.timestampformat = "%Y-%m-%d %H:%M:%S" -ibase.dateformat = "%Y-%m-%d" -ibase.timeformat = "%H:%M:%S" - -[MySQLi] -mysqli.max_persistent = -1 -mysqli.allow_persistent = On -mysqli.max_links = -1 -mysqli.cache_size = 2000 -mysqli.default_port = 3306 -mysqli.default_socket = -mysqli.default_host = -mysqli.default_user = -mysqli.default_pw = -mysqli.reconnect = Off - -[mysqlnd] -mysqlnd.collect_statistics = On -mysqlnd.collect_memory_statistics = Off - -[OCI8] - -[PostgreSQL] -pgsql.allow_persistent = On -pgsql.auto_reset_persistent = Off -pgsql.max_persistent = -1 -pgsql.max_links = -1 -pgsql.ignore_notice = 0 -pgsql.log_notice = 0 - -[bcmath] -bcmath.scale = 0 - -[browscap] - -[Session] -session.save_handler = files -session.use_strict_mode = 0 -session.use_cookies = 1 -session.cookie_secure = 1 -session.use_only_cookies = 1 -session.name = PHPSESSID -session.auto_start = 0 -session.cookie_lifetime = 0 -session.cookie_path = / -session.cookie_domain = -session.cookie_httponly = -session.serialize_handler = php -session.gc_probability = 0 -session.gc_divisor = 1000 -session.gc_maxlifetime = 1440 -session.referer_check = -session.cache_limiter = nocache -session.cache_expire = 180 -session.use_trans_sid = 0 -session.sid_length = 26 -session.trans_sid_tags = "a=href,area=href,frame=src,form=" -session.sid_bits_per_character = 5 - -[Assertion] -zend.assertions = -1 - -[COM] - -[mbstring] - -[gd] - -[exif] - -[Tidy] -tidy.clean_output = Off - -[soap] -soap.wsdl_cache_enabled=1 -soap.wsdl_cache_dir="/tmp" -soap.wsdl_cache_ttl=86400 -soap.wsdl_cache_limit = 5 - -[sysvshm] - -[ldap] -ldap.max_links = -1 - -[dba] - -[opcache] -opcache.enable=1 -opcache.enable_cli=1 -opcache.interned_strings_buffer=8 -opcache.max_accelerated_files=10000 -opcache.memory_consumption=256 -opcache.save_comments=1 -opcache.revalidate_freq=1 - -[curl] - -[openssl] diff --git a/docs/files/etc/php/7.2/fpm/php.ini b/docs/files/etc/php/7.2/fpm/php.ini deleted file mode 100644 index cd3423d..0000000 --- a/docs/files/etc/php/7.2/fpm/php.ini +++ /dev/null @@ -1,185 +0,0 @@ -[PHP] - -engine = On -short_open_tag = Off -precision = 14 -output_buffering = 4096 -zlib.output_compression = Off -implicit_flush = Off -unserialize_callback_func = -serialize_precision = -1 -disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals, -disable_classes = -zend.enable_gc = On -expose_php = Off -max_execution_time = 300 -max_input_vars = 10000 -max_input_time = 600 -memory_limit = 256M -error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT -display_errors = Off -display_startup_errors = Off -log_errors = On -log_errors_max_len = 1024 -ignore_repeated_errors = Off -ignore_repeated_source = Off -report_memleaks = On -html_errors = On -variables_order = "GPCS" -request_order = "GP" -register_argc_argv = Off -auto_globals_jit = On -post_max_size = 128M -auto_prepend_file = -auto_append_file = -default_mimetype = "text/html" -default_charset = "UTF-8" -doc_root = -user_dir = -enable_dl = Off -file_uploads = On -upload_max_filesize = 128M -max_file_uploads = 20 -allow_url_fopen = On -allow_url_include = Off -default_socket_timeout = 60 - -[CLI Server] -cli_server.color = On - -[Date] -date.timezone = Europe/Paris - -[filter] - -[iconv] - -[intl] - -[sqlite3] - -[Pcre] - -[Pdo] - -[Pdo_mysql] -pdo_mysql.cache_size = 2000 -pdo_mysql.default_socket= - -[Phar] - -[mail function] -SMTP = localhost -smtp_port = 25 -mail.add_x_header = On - -[ODBC] -odbc.allow_persistent = On -odbc.check_persistent = On -odbc.max_persistent = -1 -odbc.max_links = -1 -odbc.defaultlrl = 4096 -odbc.defaultbinmode = 1 - -[Interbase] -ibase.allow_persistent = 1 -ibase.max_persistent = -1 -ibase.max_links = -1 -ibase.timestampformat = "%Y-%m-%d %H:%M:%S" -ibase.dateformat = "%Y-%m-%d" -ibase.timeformat = "%H:%M:%S" - -[MySQLi] -mysqli.max_persistent = -1 -mysqli.allow_persistent = On -mysqli.max_links = -1 -mysqli.cache_size = 2000 -mysqli.default_port = 3306 -mysqli.default_socket = -mysqli.default_host = -mysqli.default_user = -mysqli.default_pw = -mysqli.reconnect = Off - -[mysqlnd] -mysqlnd.collect_statistics = On -mysqlnd.collect_memory_statistics = Off - -[OCI8] - -[PostgreSQL] -pgsql.allow_persistent = On -pgsql.auto_reset_persistent = Off -pgsql.max_persistent = -1 -pgsql.max_links = -1 -pgsql.ignore_notice = 0 -pgsql.log_notice = 0 - -[bcmath] -bcmath.scale = 0 - -[browscap] - -[Session] -session.save_handler = files -session.use_strict_mode = 0 -session.use_cookies = 1 -session.cookie_secure = 1 -session.use_only_cookies = 1 -session.name = PHPSESSID -session.auto_start = 0 -session.cookie_lifetime = 0 -session.cookie_path = / -session.cookie_domain = -session.cookie_httponly = -session.serialize_handler = php -session.gc_probability = 0 -session.gc_divisor = 1000 -session.gc_maxlifetime = 1440 -session.referer_check = -session.cache_limiter = nocache -session.cache_expire = 180 -session.use_trans_sid = 0 -session.sid_length = 26 -session.trans_sid_tags = "a=href,area=href,frame=src,form=" -session.sid_bits_per_character = 5 - -[Assertion] -zend.assertions = -1 - -[COM] - -[mbstring] - -[gd] - -[exif] - -[Tidy] -tidy.clean_output = Off - -[soap] -soap.wsdl_cache_enabled=1 -soap.wsdl_cache_dir="/tmp" -soap.wsdl_cache_ttl=86400 -soap.wsdl_cache_limit = 5 - -[sysvshm] - -[ldap] -ldap.max_links = -1 - -[dba] - -[opcache] -opcache.enable=1 -opcache.enable_cli=1 -opcache.interned_strings_buffer=8 -opcache.max_accelerated_files=10000 -opcache.memory_consumption=256 -opcache.save_comments=1 -opcache.revalidate_freq=1 - -[curl] - -[openssl] diff --git a/docs/files/etc/php/7.2/fpm/pool.d/www.conf b/docs/files/etc/php/7.2/fpm/pool.d/www.conf deleted file mode 100644 index 975bad3..0000000 --- a/docs/files/etc/php/7.2/fpm/pool.d/www.conf +++ /dev/null @@ -1,15 +0,0 @@ -[www] -user = www-data -group = www-data -listen = 127.0.0.1:9090 -listen.owner = www-data -listen.group = www-data -pm = ondemand -pm.max_children = 100 -pm.start_servers = 20 -pm.min_spare_servers = 10 -pm.max_spare_servers = 30 -ping.path = /ping -pm.status_path = /status -pm.max_requests = 500 -request_terminate_timeout = 300 diff --git a/docs/files/etc/security/limits.conf b/docs/files/etc/security/limits.conf deleted file mode 100644 index 4800476..0000000 --- a/docs/files/etc/security/limits.conf +++ /dev/null @@ -1,61 +0,0 @@ -# /etc/security/limits.conf -# -#Each line describes a limit for a user in the form: -# -# -# -#Where: -# can be: -# - a user name -# - a group name, with @group syntax -# - the wildcard *, for default entry -# - the wildcard %, can be also used with %group syntax, -# for maxlogin limit -# - NOTE: group and wildcard limits are not applied to root. -# To apply a limit to the root user, must be -# the literal username root. -# -# can have the two values: -# - "soft" for enforcing the soft limits -# - "hard" for enforcing hard limits -# -# can be one of the following: -# - core - limits the core file size (KB) -# - data - max data size (KB) -# - fsize - maximum filesize (KB) -# - memlock - max locked-in-memory address space (KB) -# - nofile - max number of open files -# - rss - max resident set size (KB) -# - stack - max stack size (KB) -# - cpu - max CPU time (MIN) -# - nproc - max number of processes -# - as - address space limit (KB) -# - maxlogins - max number of logins for this user -# - maxsyslogins - max number of logins on the system -# - priority - the priority to run user process with -# - locks - max number of file locks the user can hold -# - sigpending - max number of pending signals -# - msgqueue - max memory used by POSIX message queues (bytes) -# - nice - max nice priority allowed to raise to values: [-20, 19] -# - rtprio - max realtime priority -# - chroot - change root to directory (Debian-specific) -# -# -# - -#* soft core 0 -#root hard core 100000 -#* hard rss 10000 -#@student hard nproc 20 -#@faculty soft nproc 20 -#@faculty hard nproc 50 -#ftp hard nproc 0 -#ftp - chroot /ftp -#@student - maxlogins 4 - -# End of file -* hard nofile 500000 -* soft nofile 500000 -root hard nofile 500000 -root soft nofile 500000 - diff --git a/docs/files/etc/ssh/sshd_config b/docs/files/etc/ssh/sshd_config deleted file mode 100644 index b221c8a..0000000 --- a/docs/files/etc/ssh/sshd_config +++ /dev/null @@ -1,45 +0,0 @@ -# Use a custom port in the following range : 1024-65536 -Port 22 - -#Prefer ed25519 & ECDSA keys rather than 2048 bit RSA -HostKey /etc/ssh/ssh_host_rsa_key -HostKey /etc/ssh/ssh_host_ecdsa_key -HostKey /etc/ssh/ssh_host_ed25519_key - -# Allow root access with ssh keys -PermitRootLogin without-password - -# Allow ssh access to some users only -AllowUsers root - -# allow ssh key Authentication -PubkeyAuthentication yes - -# ssh keys path in ~/.ssh/authorized_keys -AuthorizedKeysFile %h/.ssh/authorized_keys - -# No password or empty passwords Authentication -PasswordAuthentication no -PermitEmptyPasswords no - -# No challenge response Authentication -ChallengeResponseAuthentication no - -UsePAM yes -X11Forwarding yes - -#PrintMotd no - -# Allow client to pass locale environment variables -AcceptEnv LANG LC_* - -# override default of no subsystems -Subsystem sftp /usr/lib/openssh/sftp-server - -# Host keys the client accepts - order here is honored by OpenSSH -HostKeyAlgorithms ssh-ed25519-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ssh-ed25519,ssh-rsa,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp384,ecdsa-sha2-nistp256 - -# use strong ciphers (you may have to comment those lines with some sftp clients) -KexAlgorithms curve25519-sha256@libssh.org -Ciphers chacha20-poly1305@openssh.com -MACs umac-128-etm@openssh.com,umac-128@openssh.com diff --git a/docs/files/etc/sysctl.d/60-ubuntu-nginx-web-server.conf b/docs/files/etc/sysctl.d/60-ubuntu-nginx-web-server.conf deleted file mode 100644 index 61c9a9b..0000000 --- a/docs/files/etc/sysctl.d/60-ubuntu-nginx-web-server.conf +++ /dev/null @@ -1,266 +0,0 @@ -# Kernel sysctl configuration file for Linux -# -# Version 1.16 - 2018-10-23 -# Michiel Klaver - IT Professional -# Modified by VirtuBox -# -# Instructions available on https://github.com/VirtuBox/ubuntu-nginx-web-server -# -# Sources : -# https://klaver.it/linux/sysctl.conf -# https://easyengine.io/tutorials/linux/sysctl-conf/ -# -# -# Credits: -# -# http://www.enigma.id.au/linux_tuning.txt -# http://www.securityfocus.com/infocus/1729 -# http://fasterdata.es.net/TCP-tuning/linux.html -# http://fedorahosted.org/ktune/browser/sysctl.ktune -# http://www.cymru.com/Documents/ip-stack-tuning.html -# http://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt -# http://www.frozentux.net/ipsysctl-tutorial/chunkyhtml/index.html -# http://knol.google.com/k/linux-performance-tuning-and-measurement -# http://www.cyberciti.biz/faq/linux-kernel-tuning-virtual-memory-subsystem/ -# http://www.redbooks.ibm.com/abstracts/REDP4285.html -# http://www.speedguide.net/read_articles.php?id=121 -# http://lartc.org/howto/lartc.kernel.obscure.html -# http://en.wikipedia.org/wiki/Sysctl -# -# Usage -# wget -O /etc/sysctl.d/60-ubuntu-nginx-web-server.conf https://virtubox.github.io/ubuntu-nginx-web-server/files/etc/sysctl.d/60-ubuntu-nginx-web-server.conf -# -# sysctl -e -p /etc/sysctl.d/60-ubuntu-nginx-web-server.conf -# For binary values, 0 is disabled, 1 is enabled. See sysctl(8) and sysctl.conf(5) for more details. -# - -### -### GENERAL SYSTEM SECURITY OPTIONS ### -### - -# Controls the System Request debugging functionality of the kernel -kernel.sysrq = 0 - -# Controls whether core dumps will append the PID to the core filename. -# Useful for debugging multi-threaded applications. -kernel.core_uses_pid = 1 - -#Allow for more PIDs -kernel.pid_max = 65535 - -# The contents of /proc//maps and smaps files are only visible to -# readers that are allowed to ptrace() the process -kernel.maps_protect = 1 - -#Enable ExecShield protection -kernel.exec-shield = 1 -kernel.randomize_va_space = 2 - -# Controls the maximum size of a message, in bytes -kernel.msgmnb = 65535 - -# Controls the default maxmimum size of a mesage queue -kernel.msgmax = 65535 - -# Restrict core dumps -fs.suid_dumpable = 0 - -# Hide exposed kernel pointers -kernel.kptr_restrict = 1 - -### -### IMPROVE SYSTEM MEMORY MANAGEMENT ### -### - -# Increase size of file handles and inode cache -fs.file-max = 209708 - -# Do less swapping -vm.swappiness = 10 -vm.dirty_ratio = 30 -vm.dirty_background_ratio = 5 - -# specifies the minimum virtual address that a process is allowed to mmap -vm.mmap_min_addr = 4096 - -# 50% overcommitment of available memory -vm.overcommit_ratio = 50 - -# allow memory overcommit required for redis -vm.overcommit_memory = 1 - -# Set maximum amount of memory allocated to shm to 256MB -kernel.shmmax = 268435456 -kernel.shmall = 268435456 - -# Keep at least 64MB of free RAM space available -vm.min_free_kbytes = 65535 - -### -### GENERAL NETWORK SECURITY OPTIONS ### -### - -#Prevent SYN attack, enable SYNcookies (they will kick-in when the max_syn_backlog reached) -net.ipv4.tcp_syncookies = 1 -net.ipv4.tcp_syn_retries = 2 -net.ipv4.tcp_synack_retries = 2 -net.ipv4.tcp_max_syn_backlog = 4096 - -# Disables IP source routing -net.ipv4.conf.all.send_redirects = 0 -net.ipv4.conf.default.send_redirects = 0 -net.ipv4.conf.all.accept_source_route = 0 -net.ipv4.conf.default.accept_source_route = 0 -net.ipv6.conf.all.accept_source_route = 0 -net.ipv6.conf.default.accept_source_route = 0 - -# Enable IP spoofing protection, turn on source route verification -net.ipv4.conf.all.rp_filter = 1 -net.ipv4.conf.default.rp_filter = 1 - -# Disable ICMP Redirect Acceptance -net.ipv4.conf.all.accept_redirects = 0 -net.ipv4.conf.default.accept_redirects = 0 -net.ipv4.conf.all.secure_redirects = 0 -net.ipv4.conf.default.secure_redirects = 0 -net.ipv6.conf.all.accept_redirects = 0 -net.ipv6.conf.default.accept_redirects = 0 - -# Enable Log Spoofed Packets, Source Routed Packets, Redirect Packets -net.ipv4.conf.all.log_martians = 1 -net.ipv4.conf.default.log_martians = 1 - -# Decrease the time default value for tcp_fin_timeout connection -net.ipv4.tcp_fin_timeout = 7 - -# Decrease the time default value for connections to keep alive -net.ipv4.tcp_keepalive_time = 300 -net.ipv4.tcp_keepalive_probes = 5 -net.ipv4.tcp_keepalive_intvl = 15 - -# Don't relay bootp -net.ipv4.conf.all.bootp_relay = 0 - -# Don't proxy arp for anyone -net.ipv4.conf.all.proxy_arp = 0 - -# Turn on the tcp_timestamps, accurate timestamp make TCP congestion control algorithms work better -net.ipv4.tcp_timestamps = 1 - -# Don't ignore directed pings -net.ipv4.icmp_echo_ignore_all = 0 - -# Enable ignoring broadcasts request -net.ipv4.icmp_echo_ignore_broadcasts = 1 - -# Enable bad error message Protection -net.ipv4.icmp_ignore_bogus_error_responses = 1 - -# Allowed local port range -net.ipv4.ip_local_port_range = 16384 65535 - -# Enable a fix for RFC1337 - time-wait assassination hazards in TCP -net.ipv4.tcp_rfc1337 = 1 - -# Do not auto-configure IPv6 -net.ipv6.conf.all.autoconf=0 -net.ipv6.conf.all.accept_ra=0 -net.ipv6.conf.default.autoconf=0 -net.ipv6.conf.default.accept_ra=0 -net.ipv6.conf.all.accept_ra_defrtr = 0 -net.ipv6.conf.default.accept_ra_defrtr = 0 -net.ipv6.conf.all.accept_ra_pinfo = 0 -net.ipv6.conf.default.accept_ra_pinfo = 0 - -### -### TUNING NETWORK PERFORMANCE ### -### - -# For servers with tcp-heavy workloads, enable 'fq' queue management scheduler (kernel > 3.12) -net.core.default_qdisc = fq - -# Turn on the tcp_window_scaling -net.ipv4.tcp_window_scaling = 1 - -# Increase the read-buffer space allocatable -net.ipv4.tcp_rmem = 8192 87380 16777216 -net.ipv4.udp_rmem_min = 16384 -net.core.rmem_default = 262144 -net.core.rmem_max = 16777216 - -# Increase the write-buffer-space allocatable -net.ipv4.tcp_wmem = 8192 65536 16777216 -net.ipv4.udp_wmem_min = 16384 -net.core.wmem_default = 262144 -net.core.wmem_max = 16777216 - -# Increase number of incoming connections -net.core.somaxconn = 32768 - -# Increase number of incoming connections backlog -net.core.netdev_max_backlog = 16384 -net.core.dev_weight = 64 - -# Increase the maximum amount of option memory buffers -net.core.optmem_max = 65535 - -# Increase the tcp-time-wait buckets pool size to prevent simple DOS attacks -net.ipv4.tcp_max_tw_buckets = 1440000 - -# try to reuse time-wait connections, but don't recycle them (recycle can break clients behind NAT) -net.ipv4.tcp_tw_recycle = 0 -net.ipv4.tcp_tw_reuse = 1 - -# Limit number of orphans, each orphan can eat up to 16M (max wmem) of unswappable memory -net.ipv4.tcp_max_orphans = 16384 -net.ipv4.tcp_orphan_retries = 0 - -# Limit the maximum memory used to reassemble IP fragments (CVE-2018-5391) -net.ipv4.ipfrag_low_thresh = 196608 -net.ipv6.ip6frag_low_thresh = 196608 -net.ipv4.ipfrag_high_thresh = 262144 -net.ipv6.ip6frag_high_thresh = 262144 - - -# don't cache ssthresh from previous connection -net.ipv4.tcp_no_metrics_save = 1 -net.ipv4.tcp_moderate_rcvbuf = 1 - -# Increase size of RPC datagram queue length -net.unix.max_dgram_qlen = 50 - -# Don't allow the arp table to become bigger than this -net.ipv4.neigh.default.gc_thresh3 = 2048 - -# Tell the gc when to become aggressive with arp table cleaning. -# Adjust this based on size of the LAN. 1024 is suitable for most /24 networks -net.ipv4.neigh.default.gc_thresh2 = 1024 - -# Adjust where the gc will leave arp table alone - set to 32. -net.ipv4.neigh.default.gc_thresh1 = 32 - -# Adjust to arp table gc to clean-up more often -net.ipv4.neigh.default.gc_interval = 30 - -# Increase TCP queue length -net.ipv4.neigh.default.proxy_qlen = 96 -net.ipv4.neigh.default.unres_qlen = 6 - -# Enable Explicit Congestion Notification (RFC 3168), disable it if it doesn't work for you -net.ipv4.tcp_ecn = 1 -net.ipv4.tcp_reordering = 3 - -# How many times to retry killing an alive TCP connection -net.ipv4.tcp_retries2 = 15 -net.ipv4.tcp_retries1 = 3 - -# Avoid falling back to slow start after a connection goes idle -# keeps our cwnd large with the keep alive connections (kernel > 3.6) -net.ipv4.tcp_slow_start_after_idle = 0 - -# Allow the TCP fastopen flag to be used, beware some firewalls do not like TFO! (kernel > 3.7) -net.ipv4.tcp_fastopen = 3 - -# This will enusre that immediatly subsequent connections use the new values -net.ipv4.route.flush = 1 -net.ipv6.route.flush = 1 diff --git a/docs/files/etc/systemd/system/mariadb.service.d/limits.conf b/docs/files/etc/systemd/system/mariadb.service.d/limits.conf deleted file mode 100644 index 10097a1..0000000 --- a/docs/files/etc/systemd/system/mariadb.service.d/limits.conf +++ /dev/null @@ -1,2 +0,0 @@ -[Service] -LimitNOFILE=500000 diff --git a/docs/files/etc/systemd/system/netdata.service.d/limits.conf b/docs/files/etc/systemd/system/netdata.service.d/limits.conf deleted file mode 100644 index 4f82fd3..0000000 --- a/docs/files/etc/systemd/system/netdata.service.d/limits.conf +++ /dev/null @@ -1,2 +0,0 @@ -[Service] -LimitNOFILE=30000 diff --git a/docs/files/etc/systemd/system/nginx.service.d/limits.conf b/docs/files/etc/systemd/system/nginx.service.d/limits.conf deleted file mode 100644 index 4f82fd3..0000000 --- a/docs/files/etc/systemd/system/nginx.service.d/limits.conf +++ /dev/null @@ -1,2 +0,0 @@ -[Service] -LimitNOFILE=30000 diff --git a/docs/files/var/www/.bashrc b/docs/files/var/www/.bashrc deleted file mode 100644 index 829fe32..0000000 --- a/docs/files/var/www/.bashrc +++ /dev/null @@ -1,70 +0,0 @@ -# uncomment for a colored prompt, if the terminal has the capability; turned -# off by default to not distract the user: the focus in a terminal window -# should be on the output of commands, not on the prompt -force_color_prompt=yes - -if [ -n "$force_color_prompt" ]; then - if [ -x /usr/bin/tput ] && tput setaf 1 >&/dev/null; then - # We have color support; assume it's compliant with Ecma-48 - # (ISO/IEC-6429). (Lack of such support is extremely rare, and such - # a case would tend to support setf rather than setaf.) - color_prompt=yes - else - color_prompt= - fi -fi - -if [ "$color_prompt" = yes ]; then - #PS1='${debian_chroot:+($debian_chroot)}\[\033[01;32m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ ' - PS1='${debian_chroot:+($debian_chroot)}\[\033[01;32m\]\u\[\033[01;33m\]@\[\033[01;36m\]\h \[\033[01;33m\]\w \[\033[01;35m\]\$ \[\033[00m\]' -else - PS1='${debian_chroot:+($debian_chroot)}\u@\h:\w\$ ' -fi -unset color_prompt force_color_prompt - -# If this is an xterm set the title to user@host:dir -case "$TERM" in -xterm*|rxvt*) - PS1="\[\e]0;${debian_chroot:+($debian_chroot)}\u@\h: \w\a\]$PS1" - ;; -*) - ;; -esac - -# some more ls aliases -alias ll='ls -alhF' -alias la='ls -A' -alias l='ls -CF' - -# Alias definitions. -# You may want to put all your additions into a separate file like -# ~/.bash_aliases, instead of adding them here directly. -# See /usr/share/doc/bash-doc/examples in the bash-doc package. - -if [ -f ~/.bash_aliases ]; then - . ~/.bash_aliases -fi - -# enable programmable completion features (you don't need to enable -# this, if it's already enabled in /etc/bash.bashrc and /etc/profile -# sources /etc/bash.bashrc). -if ! shopt -oq posix; then - if [ -f /usr/share/bash-completion/bash_completion ]; then - . /usr/share/bash-completion/bash_completion - elif [ -f /etc/bash_completion ]; then - . /etc/bash_completion - fi -fi - -# enable color support of ls and also add handy aliases -if [ -x /usr/bin/dircolors ]; then - test -r ~/.dircolors && eval "$(dircolors -b ~/.dircolors)" || eval "$(dircolors -b)" - alias ls='ls --color=auto' - #alias dir='dir --color=auto' - #alias vdir='vdir --color=auto' - - alias grep='grep --color=auto' - alias fgrep='fgrep --color=auto' - alias egrep='egrep --color=auto' -fi - diff --git a/docs/files/var/www/.profile b/docs/files/var/www/.profile deleted file mode 100644 index bc300dd..0000000 --- a/docs/files/var/www/.profile +++ /dev/null @@ -1,7 +0,0 @@ -# ~/.profile: executed by Bourne-compatible login shells. - -if [ "$BASH" ]; then - if [ -f ~/.bashrc ]; then - . ~/.bashrc - fi -fi diff --git a/etc/php/7.0/pool.d/www-sock.conf b/etc/php/7.0/pool.d/www-sock.conf index aad22c1..c07bf69 100644 --- a/etc/php/7.0/pool.d/www-sock.conf +++ b/etc/php/7.0/pool.d/www-sock.conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand diff --git a/etc/php/7.0/pool.d/www-two-sock..conf b/etc/php/7.0/pool.d/www-two-sock..conf index 7d52e25..c968b9c 100644 --- a/etc/php/7.0/pool.d/www-two-sock..conf +++ b/etc/php/7.0/pool.d/www-two-sock..conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand diff --git a/etc/php/7.1/fpm/pool.d/www-sock.conf b/etc/php/7.1/fpm/pool.d/www-sock.conf index 01ee453..fc522bb 100644 --- a/etc/php/7.1/fpm/pool.d/www-sock.conf +++ b/etc/php/7.1/fpm/pool.d/www-sock.conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand diff --git a/etc/php/7.1/fpm/pool.d/www-two-sock..conf b/etc/php/7.1/fpm/pool.d/www-two-sock..conf index 15765c5..6b6d1f9 100644 --- a/etc/php/7.1/fpm/pool.d/www-two-sock..conf +++ b/etc/php/7.1/fpm/pool.d/www-two-sock..conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand diff --git a/etc/php/7.2/fpm/pool.d/www-sock.conf b/etc/php/7.2/fpm/pool.d/www-sock.conf index 099f488..53392bc 100644 --- a/etc/php/7.2/fpm/pool.d/www-sock.conf +++ b/etc/php/7.2/fpm/pool.d/www-sock.conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand diff --git a/etc/php/7.2/fpm/pool.d/www-two-sock..conf b/etc/php/7.2/fpm/pool.d/www-two-sock..conf index 22d2842..d7cc7b2 100644 --- a/etc/php/7.2/fpm/pool.d/www-two-sock..conf +++ b/etc/php/7.2/fpm/pool.d/www-two-sock..conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand diff --git a/etc/php/7.3/fpm/pool.d/www-sock.conf b/etc/php/7.3/fpm/pool.d/www-sock.conf index 9813cbc..4ad1722 100644 --- a/etc/php/7.3/fpm/pool.d/www-sock.conf +++ b/etc/php/7.3/fpm/pool.d/www-sock.conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand diff --git a/etc/php/7.3/fpm/pool.d/www-two-sock..conf b/etc/php/7.3/fpm/pool.d/www-two-sock..conf index e2d47f9..d52c174 100644 --- a/etc/php/7.3/fpm/pool.d/www-two-sock..conf +++ b/etc/php/7.3/fpm/pool.d/www-two-sock..conf @@ -9,7 +9,7 @@ listen.group = www-data listen.mode = 0660 listen.backlog = 32768 - +chdir = / catch_workers_output = yes pm = ondemand