nextcloud

Changelog


v. 3.6 || 2017-06-28 NGINX 1.13.2 and further ssh hardenings (3 factors)


v. 3.5 || 2017-06-26 removed “ssl on;” from ssl.conf

  • /etc/nginx/ssl.conf

v. 3.4 || 2017-06-01 ssh hardening


v. 3.3 || 2017-05-29 – brought back “Mitigating DDoS Attacks with NGINX”
(https://www.nginx.com/blog/mitigating-ddos-attacks-with-nginx-and-nginx-plus/)

  • nginx.conf: limit_req_zone $binary_remote_addr zone=nc_ddos:10m rate=20r/m;
  • nextcloud.conf: limit_req zone=nc_ddos burst=25;

v. 3.2 || 2017-05-26 – adjustments for fail2ban


v. 3.1 || 2017-05-25 – let’s encrypt more easier

  • changed letsencrypt installation from git to ubuntu repos
  • made changes to the renewal script

v. 3.0 || 2017-05-22 – Nextcloud 12.0

  • updated to Nextcloud 12.0

v.2.3 || 2017-05-17 – Switched to UTF8MB4 collation while installing Nextcloud

– mariaDB (chapter 03)
– Nextcloud config.php (chapter 08)


v.2.2 || 2017-05-11 – Performance Tuning

– PHP opcache enabled in both php.ini files (chapter 02)
– updated to PHP 7.1.5 (chapter 02)
– made modifications having regards to gzip (nginx.conf, nextcloud.conf)
gzip on;
gzip_comp_level 4;
gzip_min_length 256;
gzip_proxied expired no-cache no-store private no_last_modified no_etag auth;
gzip_types application/atom+xml application/javascript application/json application/ld+json application/manifest+json application/rss+xml application/vnd.geo+json application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/bmp image/svg+xml image/x-icon text/cache-manifest text/css text/plain text/vcard text/vnd.rim.location.xloc text/vtt text/x-component text/x-cross-domain-policy;


v.2.1 || 2017-05-01 – github:
Remove X-Frame-Options “SAMEORIGIN” if your are running Nextcloud 12 (chapter 04)

Nextcloud 12 only: The X-Frame-Options header has been moved to the PHP processing and outside of .htaccess so that applications can decide themselves if they want to be iframed. For example for iframing a public Nextcloud calendar or so. So the X-Frame-Options header should be dropped from the NGINX configuration as this would also make it impossible for applications to control themselves if they want to allow iframing.


v.2.0 || 2017-04-25:
changed to Nextcloud 11.0.3, made corrections to the backup.sh* and added Nextclouds Maintenance & Release Schedule
* mysqldump –single-transaction -h localhost -unextcloud -pnextcloud nextcloud > $BACKUP_FOLDER/nextcloud_backup.sql


v. 1.8 || 2017-04-23:
added GeoIP to NGINX and PHP 7.1 (php7.1-geoip) and made smaller corrections


v. 1.7 || 2017-04-14:
added chapter 13 (Server hardenings)


v. 1.6 || 2017-04-13:
changes to NGINX 1.12 and PHP 7.1.4


v. 1.5 || 2017-03-28:
add a toogle: Mount external hdd to Nextcloud


v. 1.4 || 2017-03-21:
changed fail2ban for nextcloud in chapter 10.3, thanks to @ank0m


v. 1.3 || 2017-03-17:
added chapter 9, 10 and 11


v. 1.2 || 2017-03-14:
added screen command and ufw and updatet PHP to 7.1.3


v. 1.1 || 2017-03-08:
just moved
ssl_certificate /etc/letsencrypt/live/<yourcloud.dedyn.io>/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/<yourcloud.dedyn.io>/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/<yourcloud.dedyn.io>/fullchain.pem;
from gateway.conf to ssl.conf in chapter 04.