Comparar texto

Encuentra la diferencia entre dos archivos de texto

Editor live

Ocultar sin cambios

Sin ajuste de línea

Vista

Nivel de detalle

Resaltado de sintaxis

Diffchecker Desktop La forma más segura de usar Diffchecker. ¡Obtén la app de Diffchecker Desktop: tus diffs nunca salen de tu computadora!Obtener Desktop

Untitled diff

Creado hace 7 añosEl diff nunca expira

5 eliminaciones

Líneas
Total
Eliminado

Caracteres
Total
Eliminado

Para continuar usando esta función, actualice a Diffchecker Pro Ver precios

435 líneas

3 adiciones

Líneas
Total
Añadido

Caracteres
Total
Añadido

Para continuar usando esta función, actualice a Diffchecker Pro Ver precios

432 líneas

# prevent .zip, .gz, .tar, .bzip2 files from being accessed by default

# impossible for centmin mod to know which wp backup plugins they installed

# which may save backups to directories in wp-content/

# such plugins may deploy .htaccess protection but that isn't supported in

# nginx, so blocking access to these extensions is a workaround to cover all bases

# prepare for letsencrypt

# https://community.centminmod.com/posts/17774/

location ~ /.well-known {

location ~ /.well-known/acme-challenge/(.*) {

more_set_headers "Content-Type: text/plain";

}

# allow AJAX requests in themes and plugins

location ~ ^/wp-admin/admin-ajax.php$ { allow all; include /usr/local/nginx/conf/php.conf; }

location ~* ^/(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z)$ { deny all; }

location ~ ^/wp-content/uploads/sucuri { deny all; }

location ~ ^/wp-content/updraft { deny all; }

# Block nginx-help log from public viewing

location ~* /wp-content/uploads/nginx-helper/ { deny all; }

# webp extension support if you are converting /uploads images to webp

# WebP extension support if you are converting /uploads images to webp

location ~ ^/wp-content/uploads/ {

#pagespeed off;

#pagespeed unplugged;

#autoindex on;

#add_header X-Robots-Tag "noindex, nofollow";

location ~* ^/wp-content/uploads/(.+/)?(.+)\.(png|jpe?g)$ {

expires 30d;

add_header Vary "Accept-Encoding";

add_header Cache-Control "public, no-transform";

try_files $uri$webp_extension $uri =404;

}

location ~ ^/(wp-includes/js/tinymce/wp-tinymce.php) {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/onesignal-free-web-push-notifications//

location ~ ^/wp-content/plugins/onesignal-free-web-push-notifications/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/sparkpost/

location ~ ^/wp-content/plugins/sparkpost/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/sendgrid-email-delivery-simplified/

location ~ ^/wp-content/plugins/sendgrid-email-delivery-simplified/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/mailgun/

location ~ ^/wp-content/plugins/mailgun/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/mailjet-for-wordpress/

location ~ ^/wp-content/plugins/mailjet-for-wordpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/easy-wp-smtp/

location ~ ^/wp-content/plugins/easy-wp-smtp/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/postman-smtp/

location ~ ^/wp-content/plugins/postman-smtp/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/sendpress/

location ~ ^/wp-content/plugins/sendpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-mail-bank/

location ~ ^/wp-content/plugins/wp-mail-bank/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/theme-check/

location ~ ^/wp-content/plugins/theme-check/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce/

location ~ ^/wp-content/plugins/woocommerce/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce-csvimport/

location ~ ^/wp-content/plugins/woocommerce-csvimport/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/advanced-custom-fields/

location ~ ^/wp-content/plugins/advanced-custom-fields/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/contact-form-7/

location ~ ^/wp-content/plugins/contact-form-7/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/duplicator/

location ~ ^/wp-content/plugins/duplicator/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/jetpack/

location ~ ^/wp-content/plugins/jetpack/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/nextgen-gallery/

location ~ ^/wp-content/plugins/nextgen-gallery/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/tinymce-advanced/

location ~ ^/wp-content/plugins/tinymce-advanced/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/updraftplus/

location ~ ^/wp-content/plugins/updraftplus/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-importer/

location ~ ^/wp-content/plugins/wordpress-importer/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-seo/

location ~ ^/wp-content/plugins/wordpress-seo/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wpclef/

location ~ ^/wp-content/plugins/wpclef/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/mailchimp-for-wp/

location ~ ^/wp-content/plugins/mailchimp-for-wp/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-optimize/

location ~ ^/wp-content/plugins/wp-optimize/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/si-contact-form/

location ~ ^/wp-content/plugins/si-contact-form/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/akismet/

location ~ ^/wp-content/plugins/akismet/ {

location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; }

location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; expires 30d;}

location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; }

location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; expires 30d;}

location ~* /wp-content/plugins/akismet/akismet/.*\.php$ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

allow 127.0.0.1;

deny all;

}

# Whitelist Exception for https://wordpress.org/plugins/bbpress/

location ~ ^/wp-content/plugins/bbpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/buddypress/

location ~ ^/wp-content/plugins/buddypress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/all-in-one-seo-pack/

location ~ ^/wp-content/plugins/all-in-one-seo-pack/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/google-analytics-for-wordpress/

location ~ ^/wp-content/plugins/google-analytics-for-wordpress/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/regenerate-thumbnails/

location ~ ^/wp-content/plugins/regenerate-thumbnails/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-pagenavi/

location ~ ^/wp-content/plugins/wp-pagenavi/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wordfence/

location ~ ^/wp-content/plugins/wordfence/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/really-simple-captcha/

location ~ ^/wp-content/plugins/really-simple-captcha/ {

include /usr/local/nginx/conf/php.conf;

include /usr/local/nginx/conf/staticfiles.conf;

# below include file needs to be manually created at that path and to be uncommented

# by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf

# allows you to add commonly shared settings to all wp plugin location matches which

# whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf

#include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;

}

# Whitelist Exception for https://wordpress.org/plugins/wp-pagenavi/

location ~ ^/wp-content/plugins/wp-pagenavi/ {

location ~ ^/wp-content/plugins/wp-pagen

include /usr/

Diferencias guardadas

Texto original

Abrir archivo

# prevent .zip, .gz, .tar, .bzip2 files from being accessed by default
# impossible for centmin mod to know which wp backup plugins they installed
# which may save backups to directories in wp-content/
# such plugins may deploy .htaccess protection but that isn't supported in
# nginx, so blocking access to these extensions is a workaround to cover all bases

# prepare for letsencrypt 
# https://community.centminmod.com/posts/17774/
location ~ /.well-known {
  location ~ /.well-known/acme-challenge/(.*) {
    more_set_headers    "Content-Type: text/plain";
    }
}

# allow AJAX requests in themes and plugins
location ~ ^/wp-admin/admin-ajax.php$ { allow all; include /usr/local/nginx/conf/php.conf; }

location ~* ^/(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z)$ { deny all; }

location ~ ^/wp-content/uploads/sucuri { deny all; }

location ~ ^/wp-content/updraft { deny all; }

# Block nginx-help log from public viewing
location ~* /wp-content/uploads/nginx-helper/ { deny all; }

# webp extension support if you are converting /uploads images to webp
location ~ ^/wp-content/uploads/ {
  #pagespeed off;
  #pagespeed unplugged;
  #autoindex on;
  #add_header X-Robots-Tag "noindex, nofollow";
  location ~* ^/wp-content/uploads/(.+/)?(.+)\.(png|jpe?g)$ {
    expires 30d;
    add_header Vary "Accept-Encoding";
    add_header Cache-Control "public, no-transform";
    try_files $uri$webp_extension $uri =404;
  }
}

location ~ ^/(wp-includes/js/tinymce/wp-tinymce.php) {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/onesignal-free-web-push-notifications//
location ~ ^/wp-content/plugins/onesignal-free-web-push-notifications/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/sparkpost/
location ~ ^/wp-content/plugins/sparkpost/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/sendgrid-email-delivery-simplified/
location ~ ^/wp-content/plugins/sendgrid-email-delivery-simplified/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/mailgun/
location ~ ^/wp-content/plugins/mailgun/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/mailjet-for-wordpress/
location ~ ^/wp-content/plugins/mailjet-for-wordpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/easy-wp-smtp/
location ~ ^/wp-content/plugins/easy-wp-smtp/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/postman-smtp/
location ~ ^/wp-content/plugins/postman-smtp/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/sendpress/
location ~ ^/wp-content/plugins/sendpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wp-mail-bank/
location ~ ^/wp-content/plugins/wp-mail-bank/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/theme-check/
location ~ ^/wp-content/plugins/theme-check/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce/
location ~ ^/wp-content/plugins/woocommerce/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/woocommerce-csvimport/
location ~ ^/wp-content/plugins/woocommerce-csvimport/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/advanced-custom-fields/
location ~ ^/wp-content/plugins/advanced-custom-fields/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/contact-form-7/
location ~ ^/wp-content/plugins/contact-form-7/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/duplicator/
location ~ ^/wp-content/plugins/duplicator/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/jetpack/
location ~ ^/wp-content/plugins/jetpack/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/nextgen-gallery/
location ~ ^/wp-content/plugins/nextgen-gallery/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/tinymce-advanced/
location ~ ^/wp-content/plugins/tinymce-advanced/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/updraftplus/
location ~ ^/wp-content/plugins/updraftplus/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-importer/
location ~ ^/wp-content/plugins/wordpress-importer/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wordpress-seo/
location ~ ^/wp-content/plugins/wordpress-seo/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wpclef/
location ~ ^/wp-content/plugins/wpclef/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/mailchimp-for-wp/
location ~ ^/wp-content/plugins/mailchimp-for-wp/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wp-optimize/
location ~ ^/wp-content/plugins/wp-optimize/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/si-contact-form/
location ~ ^/wp-content/plugins/si-contact-form/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/akismet/
location ~ ^/wp-content/plugins/akismet/ {
  location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; }
  location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; }
  location ~* /wp-content/plugins/akismet/akismet/.*\.php$ {
    include /usr/local/nginx/conf/php.conf;
    include /usr/local/nginx/conf/staticfiles.conf;
    # below include file needs to be manually created at that path and to be uncommented
    # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
    # allows you to add commonly shared settings to all wp plugin location matches which
    # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
    #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
    allow 127.0.0.1;
    deny all;
  }
}

# Whitelist Exception for https://wordpress.org/plugins/bbpress/
location ~ ^/wp-content/plugins/bbpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/buddypress/
location ~ ^/wp-content/plugins/buddypress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/all-in-one-seo-pack/
location ~ ^/wp-content/plugins/all-in-one-seo-pack/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/google-analytics-for-wordpress/
location ~ ^/wp-content/plugins/google-analytics-for-wordpress/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/regenerate-thumbnails/
location ~ ^/wp-content/plugins/regenerate-thumbnails/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wp-pagenavi/
location ~ ^/wp-content/plugins/wp-pagenavi/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/wordfence/
location ~ ^/wp-content/plugins/wordfence/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/really-simple-captcha/
location ~ ^/wp-content/plugins/really-simple-captcha/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/ml-slider/
location ~ ^/wp-content/plugins/ml-slider/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/black-studio-tinymce-widget/
location ~ ^/wp-content/plugins/black-studio-tinymce-widget/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/disable-comments/
location ~ ^/wp-content/plugins/disable-comments/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for https://wordpress.org/plugins/better-wp-security/
location ~ ^/wp-content/plugins/better-wp-security/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for http://wlmsocial.com/
location ~ ^/wp-content/plugins/wlm-social/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for mediagrid timthumb
location ~ ^/wp-content/plugins/media-grid/classes/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for webp-express
location ~ ^/wp-content/plugins/webp-express/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/nederland.gratis/coupons/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Whitelist Exception for WPML
location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(css|js)$ { allow all; expires 30d;}
  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(png|gif)$ { allow all; expires 30d;}
  location ~* /wp-content/plugins/sitepress-multilingual-cms/.*\.php$ {
   include /usr/local/nginx/conf/php.conf;
   allow 127.0.0.1;
   deny all;
}

# Block PHP files in content directory.
location ~* /wp-content/.*\.php$ {
  deny all;
}

# Block PHP files in includes directory.
location ~* /wp-includes/.*\.php$ {
  deny all;
}

# Block PHP files in uploads, content, and includes directory.
location ~* /(?:uploads|files|wp-content|wp-includes)/.*\.php$ {
  deny all;
}

# Make sure files with the following extensions do not get loaded by nginx because nginx would display the source code, and these files can contain PASSWORDS!
location ~* \.(engine|inc|info|install|make|module|profile|test|po|sh|.*sql|theme|tpl(\.php)?|xtmpl)$|^(\..*|Entries.*|Repository|Root|Tag|Template)$|\.php_
{
return 444;
}

location ~* \.(tpl)$
{
  deny all; 
}

#nocgi
location ~* \.(pl|cgi|py|sh|lua)$ {
return 444;
}

#disallow
location ~* (w00tw00t) {
return 444;
}

location ~* /(\.|wp-config\.php|wp-config\.txt|changelog\.txt|readme\.txt|readme\.html|license\.txt) { deny all; }
location ~* /(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z|txt)$ { deny all; }

Texto modificado

Abrir archivo

# allow AJAX requests in themes and plugins
location ~ ^/wp-admin/admin-ajax.php$ { allow all; include /usr/local/nginx/conf/php.conf; }

location ~* ^/(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z)$ { deny all; }

location ~ ^/wp-content/uploads/sucuri { deny all; }

location ~ ^/wp-content/updraft { deny all; }

# Block nginx-help log from public viewing
location ~* /wp-content/uploads/nginx-helper/ { deny all; }

# WebP extension support if you are converting /uploads images to webp
location ~ ^/wp-content/uploads/ {
  #pagespeed off;
  #pagespeed unplugged;
  #autoindex on;
  #add_header X-Robots-Tag "noindex, nofollow";
  location ~* ^/wp-content/uploads/(.+/)?(.+)\.(png|jpe?g)$ {
    expires 30d;
    add_header Vary "Accept-Encoding";
    add_header Cache-Control "public, no-transform";
    try_files $uri$webp_extension $uri =404;
  }
}

# Whitelist Exception for https://wordpress.org/plugins/akismet/
location ~ ^/wp-content/plugins/akismet/ {
  location ~ ^/wp-content/plugins/akismet/(.+/)?(form|akismet)\.(css|js)$ { allow all; expires 30d;}
  location ~ ^/wp-content/plugins/akismet/(.+/)?(.+)\.(png|gif)$ { allow all; expires 30d;}
  location ~* /wp-content/plugins/akismet/akismet/.*\.php$ {
    include /usr/local/nginx/conf/php.conf;
    include /usr/local/nginx/conf/staticfiles.conf;
    # below include file needs to be manually created at that path and to be uncommented
    # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
    # allows you to add commonly shared settings to all wp plugin location matches which
    # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
    #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
    allow 127.0.0.1;
    deny all;
  }
}

# Whitelist Exception for webp-express
location ~ ^/wp-content/plugins/webp-express/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/$vhost/wpsecure_$vhost.conf
  #include /usr/local/nginx/conf/wpincludes/$vhost/wpwhitelist_common.conf;
}

# Block PHP files in content directory.
location ~* /wp-content/.*\.php$ {
  deny all;
}

# Block PHP files in includes directory.
location ~* /wp-includes/.*\.php$ {
  deny all;
}

# Block PHP files in uploads, content, and includes directory.
location ~* /(?:uploads|files|wp-content|wp-includes)/.*\.php$ {
  deny all;
}

location ~* \.(tpl)$
{
  deny all; 
}

#nocgi
location ~* \.(pl|cgi|py|sh|lua)$ {
return 444;
}

#disallow
location ~* (w00tw00t) {
return 444;
}

location ~* /(\.|wp-config\.php|wp-config\.txt|changelog\.txt|readme\.txt|readme\.html|license\.txt) { deny all; }
location ~* /(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z|txt)$ { deny all; }