V2EX › yuhaaitao 的所有回复 › 第 4 页 / 共 80 页

V2EX = way to explore

V2EX 是一个关于分享和探索的地方

现在注册

已注册用户请登录

1 2 3 4 5 6 7 8 9 10 ... 80

❮

❯

2020-12-09 21:50:58 +08:00

回复了 sciooga 创建的主题 › 分享创造 › 可能是 V2EX 最好用的插件

还更新吗？集成 sov2ex 好像没用？

2020-12-09 20:16:59 +08:00

回复了 yuhaaitao 创建的主题 › 问与答 › 不知怎的最近黑群晖各类服务必须用 https 打开？

@AllenHua 有这么多配置文件
[![rPAyNV.png]( https://s3.ax1x.com/2020/12/09/rPAyNV.png)]( https://imgchr.com/i/rPAyNV)

2020-12-09 20:13:48 +08:00

回复了 yuhaaitao 创建的主题 › 问与答 › 不知怎的最近黑群晖各类服务必须用 https 打开？

@AllenHua etc/nginx/nginx.conf 配置
# Copyright (c) 2000-2016 Synology Inc. All rights reserved.

worker_processes auto;
#worker_cpu_affinity auto;
worker_rlimit_nofile 65535;

include conf.d/main.conf;

events {
use epoll;
multi_accept on;
accept_mutex on;
worker_connections 1024;

include conf.d/events.conf;
}

http {
include mime.types;
default_type application/octet-stream;

log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';

access_log off;
#access_log syslog:server=unix:/dev/log,facility=local7,tag=nginx_access,nohostname main;
error_log syslog:server=unix:/dev/log,facility=local7,tag=nginx_error,nohostname error;

sendfile on;
server_tokens off;

proxy_request_buffering off;
fastcgi_request_buffering off;
scgi_request_buffering off;

proxy_buffering off;
fastcgi_buffering off;
scgi_buffering off;

resolver_timeout 5s;
client_header_timeout 10s;
client_body_timeout 60s;
send_timeout 60s;
keepalive_timeout 65s 20s;
client_max_body_size 0;
server_names_hash_max_size 8192;

ssl_certificate /usr/syno/etc/certificate/system/default/fullchain.pem;
ssl_certificate_key /usr/syno/etc/certificate/system/default/privkey.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS;
ssl_dhparam /usr/syno/etc/ssl/dh2048.pem;
ssl_prefer_server_ciphers on;

ssl_session_tickets off;
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 3600s;

server_tag "nginx";

gzip_disable "msie6";
gzip_min_length 1000;
gzip_types text/plain text/css application/javascript application/json;
gzip_vary on;
gzip_static on;

upstream synoscgi {
server unix:/run/synoscgi.sock;
}

index index.html index.htm index.php;

set_real_ip_from 127.0.0.1;
real_ip_header X-Real-IP;

server {
listen 2233 default_server;
listen [::]:2233 default_server;

server_name _;

gzip on;

include app.d/alias.*.conf;
root /usr/syno/synoman;
index index.cgi;

ignore_invalid_headers off;

include app.d/dsm.*.conf;
include /usr/syno/share/nginx/conf.d/dsm.*.conf;
include conf.d/dsm.*.conf;

location = / {
try_files $uri /index.cgi$is_args$query_string;
}

location ~ ^/volume(?:X|USB|SATA|Gluster)?\d+/ {
internal;

root /;

include app.d/x-accel.*.conf;
include conf.d/x-accel.*.conf;
}

location ~ /webman/modules/(PersonalSettings|ExternalDevices|FileBrowser)/index_ds.php$ {
alias /usr/syno/share/OAuth/index_ds.php;
default_type text/html;
}

location ~ \.cgi {
include scgi_params;
scgi_read_timeout 3600s;
scgi_pass synoscgi;
}

error_page 403 404 500 502 503 504 @error_page;

location @error_page {
root /usr/syno/share/nginx;
rewrite (.*) /error.html break;
}

location ~ ^/webman/modules/Indexer/ {
deny all;
}

location ~ ^/webapi/lib/ {
deny all;
}

location ~ ^/webapi/(:?(:?.*)\.lib|(:?.*)\.api|(:?.*)\.auth|lib.def)$ {
deny all;
}

location ~ /\. { access_log off; log_not_found off; deny all; }

location ~* \.(?:js|css|png|jpg|gif|ico)$ {
access_log off;
log_not_found off;
}

location = /favicon.ico {
access_log off;
log_not_found off;
}

location = /robots.txt {
allow all;
access_log off;
log_not_found off;
}

}

server {
listen 2234 default_server ssl http2;
listen [::]:2234 default_server ssl http2;

server_name _;

include app.d/alias.*.conf;
root /usr/syno/synoman;
index index.cgi;

ignore_invalid_headers off;

include app.d/dsm.*.conf;
include /usr/syno/share/nginx/conf.d/dsm.*.conf;
include conf.d/dsm.*.conf;

location = / {
try_files $uri /index.cgi$is_args$query_string;
}

location ~ ^/volume(?:X|USB|SATA|Gluster)?\d+/ {
internal;

root /;

include app.d/x-accel.*.conf;
include conf.d/x-accel.*.conf;
}

location ~ /webman/modules/(PersonalSettings|ExternalDevices|FileBrowser)/index_ds.php$ {
alias /usr/syno/share/OAuth/index_ds.php;
default_type text/html;
}

location ~ \.cgi {
include scgi_params;
scgi_read_timeout 3600s;
scgi_pass synoscgi;
}

error_page 403 404 500 502 503 504 @error_page;

location @error_page {
root /usr/syno/share/nginx;
rewrite (.*) /error.html break;
}

location ~ ^/webman/modules/Indexer/ {
deny all;
}

location ~ ^/webapi/lib/ {
deny all;
}

location ~ ^/webapi/(:?(:?.*)\.lib|(:?.*)\.api|(:?.*)\.auth|lib.def)$ {
deny all;
}

location ~ /\. { access_log off; log_not_found off; deny all; }

location ~* \.(?:js|css|png|jpg|gif|ico)$ {
access_log off;
log_not_found off;
}

location = /favicon.ico {
access_log off;
log_not_found off;
}

location = /robots.txt {
allow all;
access_log off;
log_not_found off;
}

}

server {
listen 80 default_server;
listen [::]:80 default_server;

gzip on;

server_name _;

location ~ ^/volume(?:X|USB|SATA|Gluster)?\d+/ {
internal;

root /;

include app.d/x-accel.*.conf;
include conf.d/x-accel.*.conf;
}

include app.d/www.*.conf;
include app.d/alias.*.conf;
include /usr/syno/share/nginx/conf.d/www.*.conf;
include conf.d/www.*.conf;

location = /webdefault/images/logo.jpg {
alias /usr/syno/share/nginx/logo.jpg;
}

error_page 403 404 500 502 503 504 @error_page;

location @error_page {
root /usr/syno/share/nginx;
rewrite (.*) /error.html break;
}

location ^~ /.well-known/acme-challenge {
root /var/lib/letsencrypt;
default_type text/plain;
}

include app.d/.location.webstation.conf*;

location / {
rewrite ^ / redirect;
}

location ~ ^/$ {
rewrite / http://$host:2233/ redirect;
}
}

server {
listen 443 default_server ssl;
listen [::]:443 default_server ssl;

server_name _;

location ~ ^/volume(?:X|USB|SATA|Gluster)?\d+/ {
internal;

root /;

include app.d/x-accel.*.conf;
include conf.d/x-accel.*.conf;
}

include app.d/www.*.conf;
include app.d/alias.*.conf;
include /usr/syno/share/nginx/conf.d/www.*.conf;
include conf.d/www.*.conf;

location = /webdefault/images/logo.jpg {
alias /usr/syno/share/nginx/logo.jpg;
}

error_page 403 404 500 502 503 504 @error_page;

location @error_page {
root /usr/syno/share/nginx;
rewrite (.*) /error.html break;
}

location ^~ /.well-known/acme-challenge {
root /var/lib/letsencrypt;
default_type text/plain;
}

include app.d/.location.webstation.conf*;

location / {
rewrite ^ / redirect;
}

location ~ ^/$ {
rewrite / https://$host:2234/ redirect;
}
}

include conf.d/http.*.conf;
include app.d/server.*.conf;
include sites-enabled/*;
}

2020-12-07 21:02:46 +08:00

回复了 yuhaaitao 创建的主题 › 问与答 › 不知怎的最近黑群晖各类服务必须用 https 打开？

@AllenHua #9 [img]https://img.pterclub.com/images/2020/12/07/ngix.png[/img]
安装的这个扩展，不知道配置文件在哪里

2020-12-07 16:39:35 +08:00

回复了 yuhaaitao 创建的主题 › 问与答 › 不知怎的最近黑群晖各类服务必须用 https 打开？

@AllenHua 请帮忙看下，是不是这里设置不对？谢谢！
[img]https://img.pterclub.com/images/2020/12/07/nights.png[/img]
[img]https://img.pterclub.com/images/2020/12/07/e8cf6af1c393047176bb8c7909930cfe.png[/img]

2020-12-07 16:36:49 +08:00

回复了 MinonHeart 创建的主题 › 分享创造 › [微博图床] 可以添加微博图片水印啦 - Chrome 扩展

有 edge 扩展吗？

2020-12-07 16:22:35 +08:00

回复了 yuhaaitao 创建的主题 › 问与答 › 不知怎的最近黑群晖各类服务必须用 https 打开？

@PMR 去掉了 HSTS，bitwarden 能正常使用，但是打开 qb 还是提示 https