Darryl Kpizingui 8 Years Ago Great post.The article starts with "Toady I was trying", should it be "Today I was trying" ? Please sign in to reply. Reply as... Cancel Kamesh Sampath Darryl Kpizingui 8 Years Ago Thanks Darryl, corrected it Please sign in to reply. Reply as... Cancel
Kamesh Sampath Darryl Kpizingui 8 Years Ago Thanks Darryl, corrected it Please sign in to reply. Reply as... Cancel
Christoph Rabel 8 Years Ago Very good article!But you should get rid of SSLv3. Please see RFC7568 for reference.A better configuration is therefore: ssl_protocols TLSv1 TLSv1.1 TLSv1.2;This site is quite good if you need strong ssl/cipher configuration:https://cipherli.st/To test the ssl config, http://ssllabs.com/ is very useful. While the grade is always capped to F if you use a selfsigned cert, you can still look at the details and recommendations.For productive environments a lot further things are recommended to do like specifying better DH parameters (ssl_dhparam) or enabling SSL stapling (performance) and possibly adding HSTS. For performance, adding a proxy_cache for themes (css/images) works nicely.Also, I'd recommend that nginx does the compression and the zip filter in Liferay is disabled. Please sign in to reply. Reply as... Cancel Moayad Abu Jaber Christoph Rabel 6 Years Ago a very important point which will be appreciated if you create a blog for this! especially mapping (css/images) with theme level and portlet level and the rest of configuration you can add here as a comment Please sign in to reply. Reply as... Cancel
Moayad Abu Jaber Christoph Rabel 6 Years Ago a very important point which will be appreciated if you create a blog for this! especially mapping (css/images) with theme level and portlet level and the rest of configuration you can add here as a comment Please sign in to reply. Reply as... Cancel
darren rose 7 Years Ago Great posts, this works for my custom portlets, but not for my custom theme. Any help welcomed. Please sign in to reply. Reply as... Cancel