Commit Graph

532 Commits

Author SHA1 Message Date
Léo Colombaro 73812b24fc Release v3.2.0 2020-04-14 10:25:21 +02:00
Léo Colombaro 4e6d15ee93 Improve README 2020-04-14 10:20:46 +02:00
Léo Colombaro 5ca3aed56c Improve README 2020-04-13 21:42:44 +02:00
Léo Colombaro b727394a54 Improve wordings in README 2020-04-13 15:00:44 +02:00
Léo Colombaro 751f8b5153 Use sct latest release 2020-04-13 14:44:29 +02:00
Léo Colombaro 98de990c1c Add expandable policies to SVGZ 2020-04-13 14:44:29 +02:00
Léo Colombaro 3615dfa351 Expand responses to include Referrer Policy 2020-04-13 14:44:29 +02:00
Léo Colombaro 41689406c8 Expand responses to include CSP
Ref: https://github.com/h5bp/server-configs-apache/issues/187
2020-04-13 14:44:29 +02:00
Léo Colombaro de4564ec9c Switch to GitHub Actions for CI 2020-04-13 14:44:29 +02:00
Erik Swan bb2a30cacc Update README.md
According to the nginx documentation, commands like `nginx reload` need the `-s` flag, as in `nginx -s reload`. This commit fixes the command examples in the README.
2020-04-06 23:38:29 +02:00
Erik Swan 5f6dc74932 Update example.com.conf to use error page include
Use the error page include instead of the error_page 404 directive. This aligns example.com.conf with no-ssl.example.com.conf.
2020-04-06 12:55:03 +02:00
Vincent Herbet d2f597235a Do no use non-ASCII characters in loaded configs
I had an issue with Certbot (let's encrypt) which failed to reload nginx due to a non-ASCII character in a loaded config file.
E.g.: `Attempting to renew cert (domain.com) from /etc/letsencrypt/renewal/domain.com.conf produced an unexpected error: 'ascii' codec can't decode byte 0xe2 in position 762: ordinal not in range(128). Skipping.`

I found this character using `grep -r -P '[^\x00-\x7f]' /etc/nginx`.
2020-02-05 18:33:14 +01:00
Léo Colombaro 28cb47df42
Rename no-transform.conf file to content_transformation.conf
Align with other files and with Apache struct
2020-01-04 18:06:00 +01:00
Léo Colombaro 71535eacc8
Add funding file 2020-01-03 19:38:58 +01:00
Léo Colombaro e0724b8149
Stricter default for Referrer Policy
Ref: https://github.com/h5bp/server-configs-apache/pull/204
2020-01-03 19:36:51 +01:00
Léo Colombaro 177a5e94a6
Improve HSTS documentation
Ref: https://github.com/h5bp/server-configs-apache/pull/196
2020-01-03 19:34:40 +01:00
minusf 7a44fdf69f Add `font/ttf` & `font/eot` to compressible mime-types list (#242)
Ref:
* jshttp/mime-db#169
* developers.google.com/web/fundamentals/performance/optimizing-content-efficiency/webfont-optimization#reducing_font_size_with_compression
2019-10-25 10:59:10 +01:00
Rahil 0af305283f Fixed description for SSL session cache & timeout (#237) 2019-09-08 00:46:31 +02:00
Jogendra Kumar 6d1a9d46e6 Additional compression method added for gzip (#236) 2019-08-12 21:21:20 +02:00
Léo Colombaro 8832ef1aed
Bump server-config-test to 1.2.1 2019-07-31 14:59:35 +02:00
Pete Cooper a1a746a347 Switch tertiary DNS used for OCSP checking to OpenDNS (#235)
Oracle is shutting down Dyn DNS in 2020.
2019-06-26 00:12:26 +02:00
Léo Colombaro bc39e4c07d
Revert "Drop Cache-Control: no-transform usage"
This partially reverts commit 282d979a

Ref https://github.com/h5bp/server-configs-apache/issues/185
2019-06-06 00:46:47 +02:00
Léo Colombaro 611ed7507b
Release v3.1.0 2019-05-19 23:02:45 +02:00
Léo Colombaro 912d80523e
Fix CHANGELOG formatting 2019-05-19 23:01:49 +02:00
Léo Colombaro ece9c6b451
Use generic `$host` instead of host name 2019-05-16 22:58:45 +02:00
Léo Colombaro 8db768bd61
Pre-compressed content usage config files
Closes #231
2019-05-16 22:57:57 +02:00
Léo Colombaro d7fc6c362d
Fix rebase artifacts 2019-05-16 00:16:59 +02:00
Pete Cooper 67c54c53f1
Documentation formatting and reviewing (#232)
No code changes, some config reordering
2019-05-15 23:20:10 +02:00
Léo Colombaro c73d1efb60
Fix 304 responses Cache-control override
Fix #230
2019-05-15 21:07:50 +02:00
Léo Colombaro 7418b5023b
Fix dropped Cache-Control: no-transform usage for SVGZ Compression 2019-05-15 19:02:13 +02:00
Léo Colombaro 062d9a1445
Bump server-configs-test to v1.1.0 2019-05-15 18:56:14 +02:00
Léo Colombaro 0a6c880be0
Improve wording and file headers 2019-05-15 18:26:04 +02:00
Léo Colombaro 282d979af4
Drop Cache-Control: no-transform usage
Obsoleted with secure servers

See https://github.com/h5bp/server-configs-apache/issues/185
2019-05-15 18:24:30 +02:00
Pete Cooper 28874c33f0 Add Google Public DNS IPv6 and Cloudflare DNS IP addresses to `resolver` (#229)
Co-authored-by: Léo Colombaro <git@colombaro.fr>
2019-05-15 02:07:47 +02:00
Pete Cooper e30032165c Fix misc typos in comments (#228) 2019-05-14 19:02:21 +02:00
Pete Cooper e64b4a6ee2 Update README.md
Caps case and double space.
2019-05-14 17:03:37 +02:00
Jonathan Chun 19ef6a8849 Fix typo in example conf (#226) 2019-04-14 19:31:05 +02:00
Léo Colombaro 276af8da7b
Improve default Content-Security-Policy value (#224)
See https://github.com/h5bp/server-configs-apache/pull/181
2019-03-26 12:41:15 +01:00
Léo Colombaro d186781282
Update `ngx_pagespeed` docs link 2019-03-24 22:21:07 +01:00
Léo Colombaro 932e5ea5b7
Merge remote-tracking branch 'origin/master' 2019-03-24 01:50:13 +01:00
Léo Colombaro 12b0ff87b9
Bump server-configs-test to v1.0.6 2019-03-24 01:50:04 +01:00
Léo Colombaro 00373398ef
Keep testing CSP headers 2019-03-15 19:01:48 +01:00
Léo Colombaro 29ff09ac95
Remove CSP from basic.conf includes
Too strong for general purposes.

Closes #222
2019-03-15 18:58:47 +01:00
Léo Colombaro 9c6cca96c8
Release v3.0.1 2019-03-09 15:20:30 +01:00
Léo Colombaro cec616a103
SVGZ files are already compressed
Disable gzip function for them
Regression d2f4e5c68f
2019-03-09 15:08:44 +01:00
Léo Colombaro 3b0c4c41df
Fix regexp expressions in mime-types maps 2019-03-09 13:45:33 +01:00
Léo Colombaro 7e270ae657
Bump server-configs-test to v1.0.3 2019-03-09 13:17:33 +01:00
Léo Colombaro db1601f606
Use regexp in MIME-types based maps 2019-03-09 02:44:10 +01:00
Léo Colombaro 06e5fc8445
Remove extra match-any regexp 2019-03-09 02:41:29 +01:00
Mark Woon d65cd97761 Use regexp in MIME-types based maps (#221)
Fix #220

Co-authored-by: Léo Colombaro <git@colombaro.fr>
2019-03-09 02:34:15 +01:00