Compare text

Find the difference between two text files

Real-time diff

Unified diff

Collapse lines

Highlight change

Syntax highlighting

Tools

Diffchecker Desktop The most secure way to run Diffchecker. Get the Diffchecker Desktop app: your diffs never leave your computer!Get Desktop

Untitled diff

Created 6 years agoDiff never expires

Lines
Total
Removed

Words
Total
Removed

To continue using this feature, upgrade to Diffchecker Pro View Pricing

435 lines

Lines
Total
Added

Words
Total
Added

To continue using this feature, upgrade to Diffchecker Pro View Pricing

432 lines

# prevent .zip, .gz, .tar, .bzip2 files from being accessed by default

# impossible for centmin mod to know which wp backup plugins they installed

# which may save backups to directories in wp-content/

# such plugins may deploy .htaccess protection but that isn't supported in

# nginx, so blocking access to these extensions is a workaround to cover all bases

# prepare for letsencrypt

# https://community.centminmod.com/posts/17774/

location ~ /.well-known {

location ~ /.well-known/acme-challenge/(.*) {

more_set_headers "Content-Type: text/plain";

}

# allow AJAX requests in themes and plugins

location ~ ^/wp-admin/admin-ajax.php$ { allow all; include /usr/local/nginx/conf/php.conf; }

location ~* ^/(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z)$ { deny all; }

location ~ ^/wp-content/uploads/sucuri { deny all; }

location ~ ^/wp-content/updraft { deny all; }

# Block nginx-help log from public viewing

location ~* /wp-content/uploads/nginx-helper/ { deny all; }

# webp extension support if you are converting /uploads images to webp

# WebP extension support if you are converting /uploads images to webp

location ~ ^/wp-content/uploads/ {

#pagespeed off;

#pagespeed unplugged;

#autoindex on;

#add_header X-Robots-Tag "noindex, nofollow";

location ~* ^/wp-content/uploads/(.+/)?(.+)\.(png|jpe?g)$ {

expires 30d;

add_header Vary "Accept-Encoding";

add_header Cache-Control "public, no-transform";

try_files $uri$webp_extension $uri =404;

}

location ~ ^/(wp-includes/js/tinymce/wp-tinymce.php) {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/onesignal-free-web-push-notifications//

location ~ ^/wp-content/plugins/onesignal-free-web-push-notifications/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/sparkpost/

location ~ ^/wp-content/plugins/sparkpost/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/sendgrid-email-delivery-simplified/

location ~ ^/wp-content/plugins/sendgrid-email-delivery-simplified/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/mailgun/

location ~ ^/wp-content/plugins/mailgun/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/mailjet-for-wordpress/

location ~ ^/wp-content/plugins/mailjet-for-wordpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/easy-wp-smtp/

location ~ ^/wp-content/plugins/easy-wp-smtp/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/postman-smtp/

location ~ ^/wp-content/plugins/postman-smtp/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/sendpress/

location ~ ^/wp-content/plugins/sendpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-mail-bank/

location ~ ^/wp-content/plugins/wp-mail-bank/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/theme-check/

location ~ ^/wp-content/plugins/theme-check/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce/

location ~ ^/wp-content/plugins/woocommerce/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce-csvimport/

location ~ ^/wp-content/plugins/woocommerce-csvimport/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/advanced-custom-fields/

location ~ ^/wp-content/plugins/advanced-custom-fields/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/contact-form-7/

location ~ ^/wp-content/plugins/contact-form-7/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/duplicator/

location ~ ^/wp-content/plugins/duplicator/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/jetpack/

location ~ ^/wp-content/plugins/jetpack/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/nextgen-gallery/

location ~ ^/wp-content/plugins/nextgen-gallery/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/tinymce-advanced/

location ~ ^/wp-content/plugins/tinymce-advanced/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/updraftplus/

location ~ ^/wp-content/plugins/updraftplus/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-importer/

location ~ ^/wp-content/plugins/wordpress-importer/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-seo/

location ~ ^/wp-content/plugins/wordpress-seo/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wpclef/

location ~ ^/wp-content/plugins/wpclef/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/mailchimp-for-wp/

location ~ ^/wp-content/plugins/mailchimp-for-wp/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-optimize/

location ~ ^/wp-content/plugins/wp-optimize/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/si-contact-form/

location ~ ^/wp-content/plugins/si-contact-form/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/akismet/

location ~ ^/wp-content/plugins/akismet/ {

location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; }

location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; expires 30d;}

location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; }

location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; expires 30d;}

location ~* /wp-content/plugins/akismet/akismet/.*\.php$ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

allow 127.0.0.1;

deny all;

}

# Whitelist Exception for https://wordpress.org/plugins/bbpress/

location ~ ^/wp-content/plugins/bbpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/buddypress/

location ~ ^/wp-content/plugins/buddypress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/all-in-one-seo-pack/

location ~ ^/wp-content/plugins/all-in-one-seo-pack/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/google-analytics-for-wordpress/

location ~ ^/wp-content/plugins/google-analytics-for-wordpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/regenerate-thumbnails/

location ~ ^/wp-content/plugins/regenerate-thumbnails/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-pagenavi/

location ~ ^/wp-content/plugins/wp-pagenavi/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wordfence/

location ~ ^/wp-content/plugins/wordfence/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/really-simple-captcha/

location ~ ^/wp-content/plugins/really-simple-captcha/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-pagenavi/

location ~ ^/wp-content/plugins/wp-pagenavi/ {

location ~ ^/wp-content/plugins/wp-pagen

include /usr/

Saved diffs

Original text

Open file

# prevent .zip, .gz, .tar, .bzip2 files from being accessed by default
# impossible for centmin mod to know which wp backup plugins they installed
# which may save backups to directories in wp-content/
# such plugins may deploy .htaccess protection but that isn't supported in
# nginx, so blocking access to these extensions is a workaround to cover all bases

# prepare for letsencrypt 
# https://community.centminmod.com/posts/17774/
location ~ /.well-known {
  location ~ /.well-known/acme-challenge/(.*) {
    more_set_headers    "Content-Type: text/plain";
    }
}

# allow AJAX requests in themes and plugins
location ~ ^/wp-admin/admin-ajax.php$ { allow all; include /usr/local/nginx/conf/php.conf; }

location ~* ^/(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z)$ { deny all; }

location ~ ^/wp-content/uploads/sucuri { deny all; }

location ~ ^/wp-content/updraft { deny all; }

# Block nginx-help log from public viewing
location ~* /wp-content/uploads/nginx-helper/ { deny all; }

# webp extension support if you are converting /uploads images to webp
location ~ ^/wp-content/uploads/ {
  #pagespeed off;
  #pagespeed unplugged;
  #autoindex on;
  #add_header X-Robots-Tag "noindex, nofollow";
  location ~* ^/wp-content/uploads/(.+/)?(.+)\.(png|jpe?g)$ {
    expires 30d;
    add_header Vary "Accept-Encoding";
    add_header Cache-Control "public, no-transform";
    try_files $uri$webp_extension $uri =404;
  }
}

location ~ ^/(wp-includes/js/tinymce/wp-tinymce.php) {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/onesignal-free-web-push-notifications//
location ~ ^/wp-content/plugins/onesignal-free-web-push-notifications/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/sparkpost/
location ~ ^/wp-content/plugins/sparkpost/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/sendgrid-email-delivery-simplified/
location ~ ^/wp-content/plugins/sendgrid-email-delivery-simplified/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/mailgun/
location ~ ^/wp-content/plugins/mailgun/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/mailjet-for-wordpress/
location ~ ^/wp-content/plugins/mailjet-for-wordpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/easy-wp-smtp/
location ~ ^/wp-content/plugins/easy-wp-smtp/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/postman-smtp/
location ~ ^/wp-content/plugins/postman-smtp/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/sendpress/
location ~ ^/wp-content/plugins/sendpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wp-mail-bank/
location ~ ^/wp-content/plugins/wp-mail-bank/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/theme-check/
location ~ ^/wp-content/plugins/theme-check/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce/
location ~ ^/wp-content/plugins/woocommerce/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce-csvimport/
location ~ ^/wp-content/plugins/woocommerce-csvimport/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/advanced-custom-fields/
location ~ ^/wp-content/plugins/advanced-custom-fields/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/contact-form-7/
location ~ ^/wp-content/plugins/contact-form-7/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/duplicator/
location ~ ^/wp-content/plugins/duplicator/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/jetpack/
location ~ ^/wp-content/plugins/jetpack/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/nextgen-gallery/
location ~ ^/wp-content/plugins/nextgen-gallery/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/tinymce-advanced/
location ~ ^/wp-content/plugins/tinymce-advanced/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/updraftplus/
location ~ ^/wp-content/plugins/updraftplus/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-importer/
location ~ ^/wp-content/plugins/wordpress-importer/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-seo/
location ~ ^/wp-content/plugins/wordpress-seo/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wpclef/
location ~ ^/wp-content/plugins/wpclef/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/mailchimp-for-wp/
location ~ ^/wp-content/plugins/mailchimp-for-wp/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wp-optimize/
location ~ ^/wp-content/plugins/wp-optimize/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/si-contact-form/
location ~ ^/wp-content/plugins/si-contact-form/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/akismet/
location ~ ^/wp-content/plugins/akismet/ {
  location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; }
  location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; }
  location ~* /wp-content/plugins/akismet/akismet/.*\.php$ {
    include /usr/local/nginx/conf/php.conf;
    include /usr/local/nginx/conf/staticfiles.conf;
    # below include file needs to be manually created at that path and to be uncommented
    # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
    # allows you to add commonly shared settings to all wp plugin location matches which
    # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
    #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
    allow 127.0.0.1;
    deny all;
  }
}

# Whitelist Exception for https://wordpress.org/plugins/bbpress/
location ~ ^/wp-content/plugins/bbpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/buddypress/
location ~ ^/wp-content/plugins/buddypress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/all-in-one-seo-pack/
location ~ ^/wp-content/plugins/all-in-one-seo-pack/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/google-analytics-for-wordpress/
location ~ ^/wp-content/plugins/google-analytics-for-wordpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/regenerate-thumbnails/
location ~ ^/wp-content/plugins/regenerate-thumbnails/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wp-pagenavi/
location ~ ^/wp-content/plugins/wp-pagenavi/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wordfence/
location ~ ^/wp-content/plugins/wordfence/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/really-simple-captcha/
location ~ ^/wp-content/plugins/really-simple-captcha/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/ml-slider/
location ~ ^/wp-content/plugins/ml-slider/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/black-studio-tinymce-widget/
location ~ ^/wp-content/plugins/black-studio-tinymce-widget/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/disable-comments/
location ~ ^/wp-content/plugins/disable-comments/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/better-wp-security/
location ~ ^/wp-content/plugins/better-wp-security/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for http://wlmsocial.com/
location ~ ^/wp-content/plugins/wlm-social/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for mediagrid timthumb
location ~ ^/wp-content/plugins/media-grid/classes/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for webp-express
location ~ ^/wp-content/plugins/webp-express/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/nederland.gratis/coupons/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for WPML
location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(css|js)$ { allow all; expires 30d;}
  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(png|gif)$ { allow all; expires 30d;}
  location ~* /wp-content/plugins/sitepress-multilingual-cms/.*\.php$ {
   include /usr/local/nginx/conf/php.conf;
   allow 127.0.0.1;
   deny all;
}

# Block PHP files in content directory.
location ~* /wp-content/.*\.php$ {
  deny all;
}

# Block PHP files in includes directory.
location ~* /wp-includes/.*\.php$ {
  deny all;
}

# Block PHP files in uploads, content, and includes directory.
location ~* /(?:uploads|files|wp-content|wp-includes)/.*\.php$ {
  deny all;
}

# Make sure files with the following extensions do not get loaded by nginx because nginx would display the source code, and these files can contain PASSWORDS!
location ~* \.(engine|inc|info|install|make|module|profile|test|po|sh|.*sql|theme|tpl(\.php)?|xtmpl)$|^(\..*|Entries.*|Repository|Root|Tag|Template)$|\.php_
{
return 444;
}

location ~* \.(tpl)$
{
  deny all; 
}

#nocgi
location ~* \.(pl|cgi|py|sh|lua)$ {
return 444;
}

#disallow
location ~* (w00tw00t) {
return 444;
}

location ~* /(\.|wp-config\.php|wp-config\.txt|changelog\.txt|readme\.txt|readme\.html|license\.txt) { deny all; }
location ~* /(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z|txt)$ { deny all; }

Changed text

Open file

# allow AJAX requests in themes and plugins
location ~ ^/wp-admin/admin-ajax.php$ { allow all; include /usr/local/nginx/conf/php.conf; }

location ~* ^/(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z)$ { deny all; }

location ~ ^/wp-content/uploads/sucuri { deny all; }

location ~ ^/wp-content/updraft { deny all; }

# Block nginx-help log from public viewing
location ~* /wp-content/uploads/nginx-helper/ { deny all; }

# WebP extension support if you are converting /uploads images to webp
location ~ ^/wp-content/uploads/ {
  #pagespeed off;
  #pagespeed unplugged;
  #autoindex on;
  #add_header X-Robots-Tag "noindex, nofollow";
  location ~* ^/wp-content/uploads/(.+/)?(.+)\.(png|jpe?g)$ {
    expires 30d;
    add_header Vary "Accept-Encoding";
    add_header Cache-Control "public, no-transform";
    try_files $uri$webp_extension $uri =404;
  }
}

# Whitelist Exception for https://wordpress.org/plugins/akismet/
location ~ ^/wp-content/plugins/akismet/ {
  location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; expires 30d;}
  location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; expires 30d;}
  location ~* /wp-content/plugins/akismet/akismet/.*\.php$ {
    include /usr/local/nginx/conf/php.conf;
    include /usr/local/nginx/conf/staticfiles.conf;
    # below include file needs to be manually created at that path and to be uncommented
    # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
    # allows you to add commonly shared settings to all wp plugin location matches which
    # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
    #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
    allow 127.0.0.1;
    deny all;
  }
}

# Whitelist Exception for webp-express
location ~ ^/wp-content/plugins/webp-express/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Block PHP files in content directory.
location ~* /wp-content/.*\.php$ {
  deny all;
}

# Block PHP files in includes directory.
location ~* /wp-includes/.*\.php$ {
  deny all;
}

# Block PHP files in uploads, content, and includes directory.
location ~* /(?:uploads|files|wp-content|wp-includes)/.*\.php$ {
  deny all;
}

location ~* \.(tpl)$
{
  deny all; 
}

#nocgi
location ~* \.(pl|cgi|py|sh|lua)$ {
return 444;
}

#disallow
location ~* (w00tw00t) {
return 444;
}

location ~* /(\.|wp-config\.php|wp-config\.txt|changelog\.txt|readme\.txt|readme\.html|license\.txt) { deny all; }
location ~* /(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z|txt)$ { deny all; }