# Global security settings for nginx

ignore_invalid_headers		on;
sendfile			on;
server_name_in_redirect		off;
server_tokens			off;

##
# This section does not work yet... don't know why
# Only requests to our Host are allowed
#      if ( $host !~ ^($server_name)$ )
#      {
#         return 444;
#      }

# Only allow these request methods
# Do not accept DELETE, SEARCH and other methods
#    if ( $request_method !~ ^(GET|HEAD|POST)$ )
#    {
#        return 444;
#    }

## Deny certain Referers ###
#    if ( $http_referer ~* (babes|forsale|girl|jewelry|love|nudit|organic|poker|porn|sex|teen) )
#    {
#        return 404;
#        return 403;
#    }