Nginx: Disabling the SSL v3 Protocol for poodle attack

To disable SSLv3 in the Nginx web server, you can use the ssl_protocols directive. This will be located in the server or http blocks in your configuration.

For instance, on Ubuntu, you can either add this globally to /etc/nginx/nginx.conf inside of the httpblock, or to each server block in the /etc/nginx/sites-enabled directory.

sudo nano /etc/nginx/nginx.conf

To disable SSLv3, your ssl_protocols directive should be set like this:

ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

You should restart the server after you have made the above modification:

sudo service nginx restart

Nginx limit upload size (413 Request Entity Too Large)

Symptom:

When upload files larger than 15MB

=>Error: HTTP error or 413 Request Entity Too Large

Resolution:

Edit file /etc/nginx/nginx.conf

looking for

client_max_body_size 15m;

change to client_max_body_size your_size;

And important when check file /etc/nginx/nginx.conf

There are that lines at bottom will overwrite nginx configuration, so we should check them.

Finally, restart nginx:

#service nginx restart

or

#/etc/init.d/nginx restart