Garbee · August 29, 2015 14:02
diff --git a/expires.conf b/expires.conf
 # Expire rules for static content

 # No default expire rule. This config mirrors that of apache as outlined in the
 # html5-boilerplate .htaccess file. However, nginx applies rules by location,
 # the apache rules are defined by type. A concequence of this difference is that
 # if you use no file extension in the url and serve html, with apache you get an
 # expire time of 0s, with nginx you'd get an expire header of one month in the
 # future (if the default expire rule is 1 month). Therefore, do not use a
 # default expire rule with nginx unless your site is completely static

 # cache.appcache, your document html and data
 location ~* \.(?:manifest|appcache|html?|xml|json)$ {
  expires -1;
  access_log /usr/local/var/log/nginx-static.log;
 }

 # Feed
 location ~* \.(?:rss|atom)$ {
  expires 1h;
  add_header Cache-Control "public";
 }

 # Media: images, icons, video, audio, HTC
 location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|ogg|ogv|webm|htc)$ {
  expires 1M;
  access_log off;
  add_header Cache-Control "public";
 }

 # CSS and Javascript
 location ~* \.(?:css|js)$ {
  expires 1y;
  access_log off;
  add_header Cache-Control "public";
 }

 # WebFonts
 # If you are NOT using cross-domain-fonts.conf, uncomment the following directive
 # location ~* \.(?:ttf|ttc|otf|eot|woff)$ {
 #  expires 1M;
 #  access_log off;
 #  add_header Cache-Control "public";
 # }
diff --git a/fastcgi.conf b/fastcgi.conf
 fastcgi_param  SCRIPT_FILENAME    $document_root$fastcgi_script_name;
 fastcgi_param  QUERY_STRING       $query_string;
 fastcgi_param  REQUEST_METHOD     $request_method;
 fastcgi_param  CONTENT_TYPE       $content_type;
 fastcgi_param  CONTENT_LENGTH     $content_length;

 fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
 fastcgi_param  REQUEST_URI        $request_uri;
 fastcgi_param  DOCUMENT_URI       $document_uri;
 fastcgi_param  DOCUMENT_ROOT      $document_root;
 fastcgi_param  SERVER_PROTOCOL    $server_protocol;
 fastcgi_param  HTTPS              $https if_not_empty;

 fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
 fastcgi_param  SERVER_SOFTWARE    hidden;

 fastcgi_param  REMOTE_ADDR        $remote_addr;
 fastcgi_param  REMOTE_PORT        $remote_port;
 fastcgi_param  SERVER_ADDR        $server_addr;
 fastcgi_param  SERVER_PORT        $server_port;
 fastcgi_param  SERVER_NAME        $server_name;

 # PHP only, required if PHP was built with --enable-force-cgi-redirect
 fastcgi_param  REDIRECT_STATUS    200;
diff --git a/laravel.dev-nginx-config b/laravel.dev-nginx-config
 # www to non-www redirect -- duplicate content is BAD:
 # https://github.com/h5bp/html5-boilerplate/blob/5370479476dceae7cc3ea105946536d6bc0ee468/.htaccess#L362
 # Choose between www and non-www, listen on the *wrong* one and redirect to
 # the right one -- http://wiki.nginx.org/Pitfalls#Server_Name
 server {
 # don't forget to tell on which port this server listens
    listen 80;
 
 # listen on the non-www host
    server_name laravel.dev;
 
 # and redirect to the www host (declared below)
    return 301 http://www.laravel.dev$request_uri;
 }
 
 server {
 listen 80 deferred;
 
 # The host name to respond to
    server_name www.laravel.dev;
 
 # Path for static files
    root /srv/web/www.laravel.dev/public;
    index index.php;
 
 # This header enables the Cross-site scripting (XSS) filter built into most recent web browsers.
 # It's usually enabled by default anyway, so the role of this header is to re-enable the filter for 
 # this particular website if it was disabled by the user.
 # https://www.owasp.org/index.php/List_of_useful_HTTP_headers
    add_header X-XSS-Protection "1; mode=block";
 
 # Example CSP configuration for getting Bootstrap from its CDN and whatever scripts Google hosts.
 # Read more about CSP at: www.html5rocks.com/en/tutorials/security/content-security-policy/
 #add_header Content-Security-Policy "default-src 'self'; script-src 'self' maxcdn.bootstrapcdn.com ajax.googleapis.com; img-src 'self'; style-src 'self' maxcdn.bootstrapcdn.com; font-src 'self' maxcdn.bootstrapcdn.com; frame-src none; object-src 'none'";
 
 
  location = /favicon.ico { access_log off; log_not_found off; }
  location = /robots.txt  { access_log off; log_not_found off; }
 
 #Specify a charset
    charset utf-8;
 
 # Custom 404 page
    error_page 404 /404.html;
 
 # Include the basic h5bp config set
    include h5bp/basic.conf;
 
    location / {
        try_files $uri $uri/ /index.php$is_args$args;
    }
 
    location ~ \.php$ {
        try_files $uri /index.php =404;
        fastcgi_pass 127.0.0.1:15000; 
        fastcgi_index index.php;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        include fastcgi_params;
    }
 }
diff --git a/laravel.dev-ssl-example-nginx-site b/laravel.dev-ssl-example-nginx-site
 # www to non-www redirect -- duplicate content is BAD:
 # https://github.com/h5bp/html5-boilerplate/blob/5370479476dceae7cc3ea105946536d6bc0ee468/.htaccess#L362
 # Choose between www and non-www, listen on the *wrong* one and redirect to
 # the right one -- http://wiki.nginx.org/Pitfalls#Server_Name
 server {
 # don't forget to tell on which port this server listens
    listen 80;

 # listen on the www host
    server_name laravel.dev;

 # and redirect to the non-www host (declared below)
    return 301 https://www.laravel.dev$request_uri;
 }

 server {
    listen 443 ssl;
    server_name laravel.dev;
    ssl_certificate /srv/web/etc/keys/laravel.dev.crt;
    ssl_certificate_key /srv/web/etc/keys/laravel.dev.key;

    return 301 https://www.laravel.dev$request_uri;
 }

 server {
 # listen 80 deferred; # for Linux
 # listen 80 accept_filter=httpready; # for FreeBSD
  listen 443 ssl spdy deferred;

 # The host name to respond to
    server_name www.laravel.dev;

 # Path for static files
    root /srv/web/www.laravel.dev/public;
    index index.php;
    ssl_certificate /srv/web/etc/keys/laravel.dev.crt;
    ssl_certificate_key /srv/web/etc/keys/laravel.dev.key;

 # This header enables the Cross-site scripting (XSS) filter built into most recent web browsers.
 # It's usually enabled by default anyway, so the role of this header is to re-enable the filter for 
 # this particular website if it was disabled by the user.
 # https://www.owasp.org/index.php/List_of_useful_HTTP_headers
    add_header X-XSS-Protection "1; mode=block";

 # Example CSP configuration for getting Bootstrap from its CDN and whatever scripts Google hosts.
 # Read more about CSP at: www.html5rocks.com/en/tutorials/security/content-security-policy/
 #add_header Content-Security-Policy "default-src 'self'; script-src 'self' maxcdn.bootstrapcdn.com ajax.googleapis.com; img-src 'self'; style-src 'self' maxcdn.bootstrapcdn.com; font-src 'self' maxcdn.bootstrapcdn.com; frame-src none; object-src 'none'";

 location = /favicon.ico { access_log off; log_not_found off; }
 location = /robots.txt  { access_log off; log_not_found off; }


 #Specify a charset
    charset utf-8;

 # Custom 404 page
    error_page 404 /404.html;

 # Include the basic h5bp config set
    include h5bp/basic.conf;

    location / {
        try_files $uri $uri/ /index.php$is_args$args;
    }

    location ~ \.php$ {
        try_files $uri /index.php =404;
        fastcgi_pass 127.0.0.1:15000; 
        fastcgi_index index.php;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        include fastcgi_params;
    }
 }
diff --git a/nginx-init.d.sh b/nginx-init.d.sh
 #! /bin/sh

 ### BEGIN INIT INFO
 # Provides:          nginx
 # Required-Start:    $all
 # Required-Stop:     $all
 # Default-Start:     2 3 4 5
 # Default-Stop:      0 1 6
 # Short-Description: starts the nginx web server
 # Description:       starts nginx using start-stop-daemon
 ### END INIT INFO

 # FROM: http://www.rackspace.com/knowledge_center/article/ubuntu-and-debian-adding-an-nginx-init-script

 PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
 DAEMON=/usr/local/sbin/nginx
 NAME=nginx
 DESC=nginx
 LOGPATH=/srv/web/etc/log
 PIDPATH=/srv/web/etc/run/$NAME.pid

 test -x $DAEMON || exit 0
 
 # Include nginx defaults if available
 if [ -f /etc/default/nginx ] ; then
    . /etc/default/nginx
 fi
 
 set -e
 
 . /lib/lsb/init-functions
 
 case "$1" in
  start)
    echo -n "Starting $DESC: "
    start-stop-daemon --start --quiet --pidfile $PIDPATH \
        --exec $DAEMON -- $DAEMON_OPTS || true
    echo "$NAME."
    ;;
  stop)
    echo -n "Stopping $DESC: "
    start-stop-daemon --stop --quiet --pidfile $PIDPATH \
        --exec $DAEMON || true
    echo "$NAME."
    ;;
  restart|force-reload)
    echo -n "Restarting $DESC: "
    start-stop-daemon --stop --quiet --pidfile \
        $PIDPATH --exec $DAEMON || true
    sleep 1
    start-stop-daemon --start --quiet --pidfile \
        $PIDPATH --exec $DAEMON -- $DAEMON_OPTS || true
    echo "$NAME."
    ;;
  reload)
      echo -n "Reloading $DESC configuration: "
      start-stop-daemon --stop --signal HUP --quiet --pidfile $PIDPATH \
          --exec $DAEMON || true
      echo "$NAME."
      ;;
  status)
      status_of_proc -p $PIDPATH "$DAEMON" nginx && exit 0 || exit $?
      ;;
  *)
    N=/etc/init.d/$NAME
    echo "Usage: $N {start|stop|restart|reload|force-reload|status}" >&2
    exit 1
    ;;
 esac
 
 exit 0
diff --git a/nginx.conf b/nginx.conf
 # nginx Configuration File
 # http://wiki.nginx.org/Configuration
 # ORIGINAL file from the H5BP server config.
 # @ https://github.com/h5bp/server-configs-nginx


 # Run as a less privileged user for security reasons.
 user web web;

 # How many worker threads to run;
 # "auto" sets it to the number of CPU cores available in the system, and
 # offers the best performance. Don't set it higher than the number of CPU
 # cores if changing this parameter.

 # The maximum number of connections for Nginx is calculated by:
 # max_clients = worker_processes * worker_connections
 worker_processes 2;

 # Maximum open file descriptors per process;
 # should be > worker_connections.
 worker_rlimit_nofile 8192;

 events {
  # When you need > 8000 * cpu_cores connections, you start optimizing your OS,
  # and this is probably the point at which you hire people who are smarter than
  # you, as this is *a lot* of requests.
  worker_connections 8000;
 }

 # Default error log file
 # (this is only used when you don't override error_log on a server{} level)
 error_log  /usr/local/var/log/nginx-error.log warn;
 pid        /usr/local/var/run/nginx.pid;

 http {

  # Hide nginx version information.
  server_tokens off;

  # Define the MIME types for files.
  include       mime.types;
  default_type  application/octet-stream;

  # Update charset_types due to updated mime.types
  charset_types text/xml text/plain text/vnd.wap.wml application/x-javascript application/rss+xml text/css application/javascript application/json;

  # Format to use in log files
  log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                    '$status $body_bytes_sent "$http_referer" '
                    '"$http_user_agent" "$http_x_forwarded_for"';

  # Default log file
  # (this is only used when you don't override access_log on a server{} level)
  access_log /usr/local/var/log/nginx-access.log main;

  # How long to allow each connection to stay idle; longer values are better
  # for each individual client, particularly for SSL, but means that worker
  # connections are tied up longer. (Default: 65)
  keepalive_timeout 20;

  # Speed up file transfers by using sendfile() to copy directly
  # between descriptors rather than using read()/write().
  sendfile        on;

  # Tell Nginx not to send out partial frames; this increases throughput
  # since TCP frames are filled up before being sent out. (adds TCP_CORK)
  tcp_nopush      on;

  # Tell Nginx to enable the Nagle buffering algorithm for TCP packets, which
  # collates several smaller packets together into one larger packet, thus saving
  # bandwidth at the cost of a nearly imperceptible increase to latency. (removes TCP_NODELAY)
  tcp_nodelay     off;


  # Compression

  # Enable Gzip compressed.
  gzip on;

  # Enable compression both for HTTP/1.0 and HTTP/1.1 (required for CloudFront).
  gzip_http_version  1.0;

  # Compression level (1-9).
  # 5 is a perfect compromise between size and cpu usage, offering about
  # 75% reduction for most ascii files (almost identical to level 9).
  gzip_comp_level    5;

  # Don't compress anything that's already small and unlikely to shrink much
  # if at all (the default is 20 bytes, which is bad as that usually leads to
  # larger files after gzipping).
  gzip_min_length    256;

  # Compress data even for clients that are connecting to us via proxies,
  # identified by the "Via" header (required for CloudFront).
  gzip_proxied       any;

  # Tell proxies to cache both the gzipped and regular version of a resource
  # whenever the client's Accept-Encoding capabilities header varies;
  # Avoids the issue where a non-gzip capable client (which is extremely rare
  # today) would display gibberish if their proxy gave them the gzipped version.
  gzip_vary          on;

  # Compress all output labeled with one of the following MIME-types.
  gzip_types
    application/atom+xml
    application/javascript
    application/json
    application/rss+xml
    application/vnd.ms-fontobject
    application/x-font-ttf
    application/x-web-app-manifest+json
    application/xhtml+xml
    application/xml
    font/opentype
    image/svg+xml
    image/x-icon
    text/css
    text/plain
    text/x-component;
  # text/html is always compressed by HttpGzipModule


  # This should be turned on if you are going to have pre-compressed copies (.gz) of
  # static files available. If not it should be left off as it will cause extra I/O
  # for the check. It is best if you enable this in a location{} block for
  # a specific directory, or on an individual server{} level.
  # gzip_static on;

  # Protect against the BEAST attack by preferring RC4-SHA when using SSLv3 and TLS protocols.
  # Note that TLSv1.1 and TLSv1.2 are immune to the beast attack but only work with OpenSSL v1.0.1 and higher and has limited client support.
  # Ciphers set to best allow protection from Beast, while providing forwarding secrecy, as defined by Mozilla - https://wiki.mozilla.org/Security/Server_Side_TLS#Nginx
  ssl_protocols              SSLv3 TLSv1 TLSv1.1 TLSv1.2;
  ssl_ciphers                ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:AES128:AES256:RC4-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK;
  ssl_prefer_server_ciphers  on;

  # Optimize SSL by caching session parameters for 10 minutes. This cuts down on the number of expensive SSL handshakes.
  # The handshake is the most CPU-intensive operation, and by default it is re-negotiated on every new/parallel connection.
  # By enabling a cache (of type "shared between all Nginx workers"), we tell the client to re-use the already negotiated state.
  # Further optimization can be achieved by raising keepalive_timeout, but that shouldn't be done unless you serve primarily HTTPS.
  ssl_session_cache    shared:SSL:10m; # a 1mb cache can hold about 4000 sessions, so we can hold 40000 sessions
  ssl_session_timeout  10m;

  # This default SSL certificate will be served whenever the client lacks support for SNI (Server Name Indication).
  # Make it a symlink to the most important certificate you have, so that users of IE 8 and below on WinXP can see your main site without SSL errors.
  #ssl_certificate      /etc/nginx/default_ssl.crt;
  #ssl_certificate_key  /etc/nginx/default_ssl.key;

  include sites-enabled/*;
 }
diff --git a/php-fpm-init.d.sh b/php-fpm-init.d.sh
 #! /bin/sh

 ### BEGIN INIT INFO
 # Provides:          php-fpm
 # Required-Start:    $remote_fs $network
 # Required-Stop:     $remote_fs $network
 # Default-Start:     2 3 4 5
 # Default-Stop:      0 1 6
 # Short-Description: starts php-fpm
 # Description:       starts the PHP FastCGI Process Manager daemon
 ### END INIT INFO

 prefix=/usr/local
 exec_prefix=${prefix}

 php_fpm_BIN=${exec_prefix}/sbin/php-fpm
 php_fpm_CONF=${prefix}/etc/php/php-fpm.conf
 php_fpm_PID=${prefix}/var/run/php-fpm.pid


 php_opts="--fpm-config $php_fpm_CONF --pid $php_fpm_PID"


 wait_for_pid () {
 	try=0

 	while test $try -lt 35 ; do

 		case "$1" in
 			'created')
 			if [ -f "$2" ] ; then
 				try=''
 				break
 			fi
 			;;

 			'removed')
 			if [ ! -f "$2" ] ; then
 				try=''
 				break
 			fi
 			;;
 		esac

 		echo -n .
 		try=`expr $try + 1`
 		sleep 1

 	done

 }

 case "$1" in
 	start)
 		echo -n "Starting php-fpm "

 		$php_fpm_BIN --daemonize $php_opts

 		if [ "$?" != 0 ] ; then
 			echo " failed"
 			exit 1
 		fi

 		wait_for_pid created $php_fpm_PID

 		if [ -n "$try" ] ; then
 			echo " failed"
 			exit 1
 		else
 			echo " done"
 		fi
 	;;

 	stop)
 		echo -n "Gracefully shutting down php-fpm "

 		if [ ! -r $php_fpm_PID ] ; then
 			echo "warning, no pid file found - php-fpm is not running ?"
 			exit 1
 		fi

 		kill -QUIT `cat $php_fpm_PID`

 		wait_for_pid removed $php_fpm_PID

 		if [ -n "$try" ] ; then
 			echo " failed. Use force-quit"
 			exit 1
 		else
 			echo " done"
 		fi
 	;;

 	status)
 		if [ ! -r $php_fpm_PID ] ; then
 			echo "php-fpm is stopped"
 			exit 0
 		fi

 		PID=`cat $php_fpm_PID`
 		if ps -p $PID | grep -q $PID; then
 			echo "php-fpm (pid $PID) is running..."
 		else
 			echo "php-fpm dead but pid file exists"
 		fi
 	;;

 	force-quit)
 		echo -n "Terminating php-fpm "

 		if [ ! -r $php_fpm_PID ] ; then
 			echo "warning, no pid file found - php-fpm is not running ?"
 			exit 1
 		fi

 		kill -TERM `cat $php_fpm_PID`

 		wait_for_pid removed $php_fpm_PID

 		if [ -n "$try" ] ; then
 			echo " failed"
 			exit 1
 		else
 			echo " done"
 		fi
 	;;

 	restart)
 		$0 stop
 		$0 start
 	;;

 	reload)

 		echo -n "Reload service php-fpm "

 		if [ ! -r $php_fpm_PID ] ; then
 			echo "warning, no pid file found - php-fpm is not running ?"
 			exit 1
 		fi

 		kill -USR2 `cat $php_fpm_PID`

 		echo " done"
 	;;

 	*)
 		echo "Usage: $0 {start|stop|force-quit|restart|reload|status}"
 		exit 1
 	;;

 esac
diff --git a/php-fpm.conf b/php-fpm.conf
 ;;;;;;;;;;;;;;;;;;;;;
 ; FPM Configuration ;
 ;;;;;;;;;;;;;;;;;;;;;

 ; All relative paths in this configuration file are relative to PHP's install
 ; prefix (/usr/local). This prefix can be dynamically changed by using the
 ; '-p' argument from the command line.

 ; Include one or more files. If glob(3) exists, it is used to include a bunch of
 ; files from a glob(3) pattern. This directive can be used everywhere in the
 ; file.
 ; Relative path can also be used. They will be prefixed by:
 ;  - the global prefix if it's been set (-p argument)
 ;  - /usr/local otherwise
 ;include=etc/fpm.d/*.conf

 ;;;;;;;;;;;;;;;;;;
 ; Global Options ;
 ;;;;;;;;;;;;;;;;;;

 [global]
 ; Pid file
 ; Note: the default prefix is /usr/local/var
 ; Default Value: none
 pid = /usr/local/var/run/php-fpm.pid

 ; Error log file
 ; If it's set to "syslog", log is sent to syslogd instead of being written
 ; in a local file.
 ; Note: the default prefix is /usr/local/var
 ; Default Value: log/php-fpm.log
 error_log = /usr/local/var/log/php-fpm-error.log

 ; syslog_facility is used to specify what type of program is logging the
 ; message. This lets syslogd specify that messages from different facilities
 ; will be handled differently.
 ; See syslog(3) for possible values (ex daemon equiv LOG_DAEMON)
 ; Default Value: daemon
 ;syslog.facility = daemon

 ; syslog_ident is prepended to every message. If you have multiple FPM
 ; instances running on the same server, you can change the default value
 ; which must suit common needs.
 ; Default Value: php-fpm
 ;syslog.ident = php-fpm

 ; Log level
 ; Possible Values: alert, error, warning, notice, debug
 ; Default Value: notice
 ;log_level = notice

 ; If this number of child processes exit with SIGSEGV or SIGBUS within the time
 ; interval set by emergency_restart_interval then FPM will restart. A value
 ; of '0' means 'Off'.
 ; Default Value: 0
 ;emergency_restart_threshold = 0

 ; Interval of time used by emergency_restart_interval to determine when
 ; a graceful restart will be initiated.  This can be useful to work around
 ; accidental corruptions in an accelerator's shared memory.
 ; Available Units: s(econds), m(inutes), h(ours), or d(ays)
 ; Default Unit: seconds
 ; Default Value: 0
 ;emergency_restart_interval = 0

 ; Time limit for child processes to wait for a reaction on signals from master.
 ; Available units: s(econds), m(inutes), h(ours), or d(ays)
 ; Default Unit: seconds
 ; Default Value: 0
 ;process_control_timeout = 0

 ; The maximum number of processes FPM will fork. This has been design to control
 ; the global number of processes when using dynamic PM within a lot of pools.
 ; Use it with caution.
 ; Note: A value of 0 indicates no limit
 ; Default Value: 0
 ; process.max = 128

 ; Specify the nice(2) priority to apply to the master process (only if set)
 ; The value can vary from -19 (highest priority) to 20 (lower priority)
 ; Note: - It will only work if the FPM master process is launched as root
 ;       - The pool process will inherit the master process priority
 ;         unless it specified otherwise
 ; Default Value: no set
 ; process.priority = -19

 ; Send FPM to background. Set to 'no' to keep FPM in foreground for debugging.
 ; Default Value: yes
 ;daemonize = yes

 ; Set open file descriptor rlimit for the master process.
 ; Default Value: system defined value
 ;rlimit_files = 1024

 ; Set max core size rlimit for the master process.
 ; Possible Values: 'unlimited' or an integer greater or equal to 0
 ; Default Value: system defined value
 ;rlimit_core = 0

 ; Specify the event mechanism FPM will use. The following is available:
 ; - select     (any POSIX os)
 ; - poll       (any POSIX os)
 ; - epoll      (linux >= 2.5.44)
 ; - kqueue     (FreeBSD >= 4.1, OpenBSD >= 2.9, NetBSD >= 2.0)
 ; - /dev/poll  (Solaris >= 7)
 ; - port       (Solaris >= 10)
 ; Default Value: not set (auto detection)
 ;events.mechanism = epoll

 ; When FPM is build with systemd integration, specify the interval,
 ; in second, between health report notification to systemd.
 ; Set to 0 to disable.
 ; Available Units: s(econds), m(inutes), h(ours)
 ; Default Unit: seconds
 ; Default value: 10
 ;systemd_interval = 10

 ;;;;;;;;;;;;;;;;;;;;
 ; Pool Definitions ;
 ;;;;;;;;;;;;;;;;;;;;

 ; Multiple pools of child processes may be started with different listening
 ; ports and different management options.  The name of the pool will be
 ; used in logs and stats. There is no limitation on the number of pools which
 ; FPM can handle. Your system will tell you anyway :)

 ; Start a new pool named 'www'.
 ; the variable $pool can we used in any directive and will be replaced by the
 ; pool name ('www' here)
 [www]

 ; Per pool prefix
 ; It only applies on the following directives:
 ; - 'slowlog'
 ; - 'listen' (unixsocket)
 ; - 'chroot'
 ; - 'chdir'
 ; - 'php_values'
 ; - 'php_admin_values'
 ; When not set, the global prefix (or NONE) applies instead.
 ; Note: This directive can also be relative to the global prefix.
 ; Default Value: none
 ;prefix = /path/to/pools/$pool

 ; Unix user/group of processes
 ; Note: The user is mandatory. If the group is not set, the default user's group
 ;       will be used.
 user = web
 group = web

 ; The address on which to accept FastCGI requests.
 ; Valid syntaxes are:
 ;   'ip.add.re.ss:port'    - to listen on a TCP socket to a specific address on
 ;                            a specific port;
 ;   'port'                 - to listen on a TCP socket to all addresses on a
 ;                            specific port;
 ;   '/path/to/unix/socket' - to listen on a unix socket.
 ; Note: This value is mandatory.
 listen = 127.0.0.1:15000

 ; Set listen(2) backlog.
 ; Default Value: 65535 (-1 on FreeBSD and OpenBSD)
 ;listen.backlog = 65535

 ; Set permissions for unix socket, if one is used. In Linux, read/write
 ; permissions must be set in order to allow connections from a web server. Many
 ; BSD-derived systems allow connections regardless of permissions.
 ; Default Values: user and group are set as the running user
 ;                 mode is set to 0660
 ;listen.owner = nobody
 ;listen.group = nobody
 ;listen.mode = 0660

 ; List of ipv4 addresses of FastCGI clients which are allowed to connect.
 ; Equivalent to the FCGI_WEB_SERVER_ADDRS environment variable in the original
 ; PHP FCGI (5.2.2+). Makes sense only with a tcp listening socket. Each address
 ; must be separated by a comma. If this value is left blank, connections will be
 ; accepted from any ip address.
 ; Default Value: any
 listen.allowed_clients = 127.0.0.1

 ; Specify the nice(2) priority to apply to the pool processes (only if set)
 ; The value can vary from -19 (highest priority) to 20 (lower priority)
 ; Note: - It will only work if the FPM master process is launched as root
 ;       - The pool processes will inherit the master process priority
 ;         unless it specified otherwise
 ; Default Value: no set
 ; process.priority = -19

 ; Choose how the process manager will control the number of child processes.
 ; Possible Values:
 ;   static  - a fixed number (pm.max_children) of child processes;
 ;   dynamic - the number of child processes are set dynamically based on the
 ;             following directives. With this process management, there will be
 ;             always at least 1 children.
 ;             pm.max_children      - the maximum number of children that can
 ;                                    be alive at the same time.
 ;             pm.start_servers     - the number of children created on startup.
 ;             pm.min_spare_servers - the minimum number of children in 'idle'
 ;                                    state (waiting to process). If the number
 ;                                    of 'idle' processes is less than this
 ;                                    number then some children will be created.
 ;             pm.max_spare_servers - the maximum number of children in 'idle'
 ;                                    state (waiting to process). If the number
 ;                                    of 'idle' processes is greater than this
 ;                                    number then some children will be killed.
 ;  ondemand - no children are created at startup. Children will be forked when
 ;             new requests will connect. The following parameter are used:
 ;             pm.max_children           - the maximum number of children that
 ;                                         can be alive at the same time.
 ;             pm.process_idle_timeout   - The number of seconds after which
 ;                                         an idle process will be killed.
 ; Note: This value is mandatory.
 pm = dynamic

 ; The number of child processes to be created when pm is set to 'static' and the
 ; maximum number of child processes when pm is set to 'dynamic' or 'ondemand'.
 ; This value sets the limit on the number of simultaneous requests that will be
 ; served. Equivalent to the ApacheMaxClients directive with mpm_prefork.
 ; Equivalent to the PHP_FCGI_CHILDREN environment variable in the original PHP
 ; CGI. The below defaults are based on a server without much resources. Don't
 ; forget to tweak pm.* to fit your needs.
 ; Note: Used when pm is set to 'static', 'dynamic' or 'ondemand'
 ; Note: This value is mandatory.
 pm.max_children = 5

 ; The number of child processes created on startup.
 ; Note: Used only when pm is set to 'dynamic'
 ; Default Value: min_spare_servers + (max_spare_servers - min_spare_servers) / 2
 pm.start_servers = 2

 ; The desired minimum number of idle server processes.
 ; Note: Used only when pm is set to 'dynamic'
 ; Note: Mandatory when pm is set to 'dynamic'
 pm.min_spare_servers = 1

 ; The desired maximum number of idle server processes.
 ; Note: Used only when pm is set to 'dynamic'
 ; Note: Mandatory when pm is set to 'dynamic'
 pm.max_spare_servers = 3

 ; The number of seconds after which an idle process will be killed.
 ; Note: Used only when pm is set to 'ondemand'
 ; Default Value: 10s
 ;pm.process_idle_timeout = 10s;

 ; The number of requests each child process should execute before respawning.
 ; This can be useful to work around memory leaks in 3rd party libraries. For
 ; endless request processing specify '0'. Equivalent to PHP_FCGI_MAX_REQUESTS.
 ; Default Value: 0
 ;pm.max_requests = 500

 ; The URI to view the FPM status page. If this value is not set, no URI will be
 ; recognized as a status page. It shows the following informations:
 ;   pool                 - the name of the pool;
 ;   process manager      - static, dynamic or ondemand;
 ;   start time           - the date and time FPM has started;
 ;   start since          - number of seconds since FPM has started;
 ;   accepted conn        - the number of request accepted by the pool;
 ;   listen queue         - the number of request in the queue of pending
 ;                          connections (see backlog in listen(2));
 ;   max listen queue     - the maximum number of requests in the queue
 ;                          of pending connections since FPM has started;
 ;   listen queue len     - the size of the socket queue of pending connections;
 ;   idle processes       - the number of idle processes;
 ;   active processes     - the number of active processes;
 ;   total processes      - the number of idle + active processes;
 ;   max active processes - the maximum number of active processes since FPM
 ;                          has started;
 ;   max children reached - number of times, the process limit has been reached,
 ;                          when pm tries to start more children (works only for
 ;                          pm 'dynamic' and 'ondemand');
 ; Value are updated in real time.
 ; Example output:
 ;   pool:                 www
 ;   process manager:      static
 ;   start time:           01/Jul/2011:17:53:49 +0200
 ;   start since:          62636
 ;   accepted conn:        190460
 ;   listen queue:         0
 ;   max listen queue:     1
 ;   listen queue len:     42
 ;   idle processes:       4
 ;   active processes:     11
 ;   total processes:      15
 ;   max active processes: 12
 ;   max children reached: 0
 ;
 ; By default the status page output is formatted as text/plain. Passing either
 ; 'html', 'xml' or 'json' in the query string will return the corresponding
 ; output syntax. Example:
 ;   http://www.foo.bar/status
 ;   http://www.foo.bar/status?json
 ;   http://www.foo.bar/status?html
 ;   http://www.foo.bar/status?xml
 ;
 ; By default the status page only outputs short status. Passing 'full' in the
 ; query string will also return status for each pool process.
 ; Example:
 ;   http://www.foo.bar/status?full
 ;   http://www.foo.bar/status?json&full
 ;   http://www.foo.bar/status?html&full
 ;   http://www.foo.bar/status?xml&full
 ; The Full status returns for each process:
 ;   pid                  - the PID of the process;
 ;   state                - the state of the process (Idle, Running, ...);
 ;   start time           - the date and time the process has started;
 ;   start since          - the number of seconds since the process has started;
 ;   requests             - the number of requests the process has served;
 ;   request duration     - the duration in µs of the requests;
 ;   request method       - the request method (GET, POST, ...);
 ;   request URI          - the request URI with the query string;
 ;   content length       - the content length of the request (only with POST);
 ;   user                 - the user (PHP_AUTH_USER) (or '-' if not set);
 ;   script               - the main script called (or '-' if not set);
 ;   last request cpu     - the %cpu the last request consumed
 ;                          it's always 0 if the process is not in Idle state
 ;                          because CPU calculation is done when the request
 ;                          processing has terminated;
 ;   last request memory  - the max amount of memory the last request consumed
 ;                          it's always 0 if the process is not in Idle state
 ;                          because memory calculation is done when the request
 ;                          processing has terminated;
 ; If the process is in Idle state, then informations are related to the
 ; last request the process has served. Otherwise informations are related to
 ; the current request being served.
 ; Example output:
 ;   ************************
 ;   pid:                  31330
 ;   state:                Running
 ;   start time:           01/Jul/2011:17:53:49 +0200
 ;   start since:          63087
 ;   requests:             12808
 ;   request duration:     1250261
 ;   request method:       GET
 ;   request URI:          /test_mem.php?N=10000
 ;   content length:       0
 ;   user:                 -
 ;   script:               /home/fat/web/docs/php/test_mem.php
 ;   last request cpu:     0.00
 ;   last request memory:  0
 ;
 ; Note: There is a real-time FPM status monitoring sample web page available
 ;       It's available in: ${prefix}/share/fpm/status.html
 ;
 ; Note: The value must start with a leading slash (/). The value can be
 ;       anything, but it may not be a good idea to use the .php extension or it
 ;       may conflict with a real PHP file.
 ; Default Value: not set
 ;pm.status_path = /status

 ; The ping URI to call the monitoring page of FPM. If this value is not set, no
 ; URI will be recognized as a ping page. This could be used to test from outside
 ; that FPM is alive and responding, or to
 ; - create a graph of FPM availability (rrd or such);
 ; - remove a server from a group if it is not responding (load balancing);
 ; - trigger alerts for the operating team (24/7).
 ; Note: The value must start with a leading slash (/). The value can be
 ;       anything, but it may not be a good idea to use the .php extension or it
 ;       may conflict with a real PHP file.
 ; Default Value: not set
 ;ping.path = /ping

 ; This directive may be used to customize the response of a ping request. The
 ; response is formatted as text/plain with a 200 response code.
 ; Default Value: pong
 ;ping.response = pong

 ; The access log file
 ; Default: not set
 ;access.log = log/$pool.access.log

 ; The access log format.
 ; The following syntax is allowed
 ;  %%: the '%' character
 ;  %C: %CPU used by the request
 ;      it can accept the following format:
 ;      - %{user}C for user CPU only
 ;      - %{system}C for system CPU only
 ;      - %{total}C  for user + system CPU (default)
 ;  %d: time taken to serve the request
 ;      it can accept the following format:
 ;      - %{seconds}d (default)
 ;      - %{miliseconds}d
 ;      - %{mili}d
 ;      - %{microseconds}d
 ;      - %{micro}d
 ;  %e: an environment variable (same as $_ENV or $_SERVER)
 ;      it must be associated with embraces to specify the name of the env
 ;      variable. Some exemples:
 ;      - server specifics like: %{REQUEST_METHOD}e or %{SERVER_PROTOCOL}e
 ;      - HTTP headers like: %{HTTP_HOST}e or %{HTTP_USER_AGENT}e
 ;  %f: script filename
 ;  %l: content-length of the request (for POST request only)
 ;  %m: request method
 ;  %M: peak of memory allocated by PHP
 ;      it can accept the following format:
 ;      - %{bytes}M (default)
 ;      - %{kilobytes}M
 ;      - %{kilo}M
 ;      - %{megabytes}M
 ;      - %{mega}M
 ;  %n: pool name
 ;  %o: output header
 ;      it must be associated with embraces to specify the name of the header:
 ;      - %{Content-Type}o
 ;      - %{X-Powered-By}o
 ;      - %{Transfert-Encoding}o
 ;      - ....
 ;  %p: PID of the child that serviced the request
 ;  %P: PID of the parent of the child that serviced the request
 ;  %q: the query string
 ;  %Q: the '?' character if query string exists
 ;  %r: the request URI (without the query string, see %q and %Q)
 ;  %R: remote IP address
 ;  %s: status (response code)
 ;  %t: server time the request was received
 ;      it can accept a strftime(3) format:
 ;      %d/%b/%Y:%H:%M:%S %z (default)
 ;  %T: time the log has been written (the request has finished)
 ;      it can accept a strftime(3) format:
 ;      %d/%b/%Y:%H:%M:%S %z (default)
 ;  %u: remote user
 ;
 ; Default: "%R - %u %t \"%m %r\" %s"
 ;access.format = "%R - %u %t \"%m %r%Q%q\" %s %f %{mili}d %{kilo}M %C%%"

 ; The log file for slow requests
 ; Default Value: not set
 ; Note: slowlog is mandatory if request_slowlog_timeout is set
 slowlog = /usr/local/var/log/$pool.log.slow

 ; The timeout for serving a single request after which a PHP backtrace will be
 ; dumped to the 'slowlog' file. A value of '0s' means 'off'.
 ; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
 ; Default Value: 0
 ;request_slowlog_timeout = 0

 ; The timeout for serving a single request after which the worker process will
 ; be killed. This option should be used when the 'max_execution_time' ini option
 ; does not stop script execution for some reason. A value of '0' means 'off'.
 ; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
 ; Default Value: 0
 ;request_terminate_timeout = 0

 ; Set open file descriptor rlimit.
 ; Default Value: system defined value
 ;rlimit_files = 1024

 ; Set max core size rlimit.
 ; Possible Values: 'unlimited' or an integer greater or equal to 0
 ; Default Value: system defined value
 ;rlimit_core = 0

 ; Chroot to this directory at the start. This value must be defined as an
 ; absolute path. When this value is not set, chroot is not used.
 ; Note: you can prefix with '$prefix' to chroot to the pool prefix or one
 ; of its subdirectories. If the pool prefix is not set, the global prefix
 ; will be used instead.
 ; Note: chrooting is a great security feature and should be used whenever
 ;       possible. However, all PHP paths will be relative to the chroot
 ;       (error_log, sessions.save_path, ...).
 ; Default Value: not set
 ;chroot =

 ; Chdir to this directory at the start.
 ; Note: relative path can be used.
 ; Default Value: current directory or / when chroot
 ;chdir = /var/www

 ; Redirect worker stdout and stderr into main error log. If not set, stdout and
 ; stderr will be redirected to /dev/null according to FastCGI specs.
 ; Note: on highloaded environement, this can cause some delay in the page
 ; process time (several ms).
 ; Default Value: no
 ;catch_workers_output = yes

 ; Clear environment in FPM workers
 ; Prevents arbitrary environment variables from reaching FPM worker processes
 ; by clearing the environment in workers before env vars specified in this
 ; pool configuration are added.
 ; Setting to "no" will make all environment variables available to PHP code
 ; via getenv(), $_ENV and $_SERVER.
 ; Default Value: yes
 ;clear_env = no

 ; Limits the extensions of the main script FPM will allow to parse. This can
 ; prevent configuration mistakes on the web server side. You should only limit
 ; FPM to .php extensions to prevent malicious users to use other extensions to
 ; exectute php code.
 ; Note: set an empty value to allow all extensions.
 ; Default Value: .php
 ;security.limit_extensions = .php

 ; Pass environment variables like LD_LIBRARY_PATH. All $VARIABLEs are taken from
 ; the current environment.
 ; Default Value: clean env
 ;env[HOSTNAME] = $HOSTNAME
 ;env[PATH] = /usr/local/bin:/usr/bin:/bin
 ;env[TMP] = /tmp
 ;env[TMPDIR] = /tmp
 ;env[TEMP] = /tmp

 ; Additional php.ini defines, specific to this pool of workers. These settings
 ; overwrite the values previously defined in the php.ini. The directives are the
 ; same as the PHP SAPI:
 ;   php_value/php_flag             - you can set classic ini defines which can
 ;                                    be overwritten from PHP call 'ini_set'.
 ;   php_admin_value/php_admin_flag - these directives won't be overwritten by
 ;                                     PHP call 'ini_set'
 ; For php_*flag, valid values are on, off, 1, 0, true, false, yes or no.

 ; Defining 'extension' will load the corresponding shared extension from
 ; extension_dir. Defining 'disable_functions' or 'disable_classes' will not
 ; overwrite previously defined php.ini values, but will append the new value
 ; instead.

 ; Note: path INI options can be relative and will be expanded with the prefix
 ; (pool, global or /usr/local)

 ; Default Value: nothing is defined by default except the values in php.ini and
 ;                specified at startup with the -d argument
 ;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f [email protected]
 ;php_flag[display_errors] = off
 ;php_admin_value[error_log] = /var/log/fpm-php.www.log
 ;php_admin_flag[log_errors] = on
 ;php_admin_value[memory_limit] = 32M
diff --git a/php.ini b/php.ini
 date.timezone = "America/New_York"
 mysqli.default_socket="/var/run/mysqld/mysqld.sock"
 pdo_mysql.default_socket="/var/run/mysqld/mysqld.sock"
 memory_limit = "256M"
 upload_max_filesize = "20M"
 opcache.memory_consumption=128
 opcache.interned_strings_buffer=8
 opcache.max_accelerated_files=4000
 opcache.revalidate_freq=60
 opcache.fast_shutdown=1
 opcache.enable_cli=1
 opcache.error_log="/srv/web/etc/log/php-opcache-error.log"
 error_reporting = E_ALL
 display_errors = On
 cgi.fix_pathinfo=0
 extension=imagick.so
	# Expire rules for static content

	# No default expire rule. This config mirrors that of apache as outlined in the
	# html5-boilerplate .htaccess file. However, nginx applies rules by location,
	# the apache rules are defined by type. A concequence of this difference is that
	# if you use no file extension in the url and serve html, with apache you get an
	# expire time of 0s, with nginx you'd get an expire header of one month in the
	# future (if the default expire rule is 1 month). Therefore, do not use a
	# default expire rule with nginx unless your site is completely static

	# cache.appcache, your document html and data
	location ~* \.(?:manifest\|appcache\|html?\|xml\|json)$ {
	expires -1;
	access_log /usr/local/var/log/nginx-static.log;
	}

	# Feed
	location ~* \.(?:rss\|atom)$ {
	expires 1h;
	add_header Cache-Control "public";
	}

	# Media: images, icons, video, audio, HTC
	location ~* \.(?:jpg\|jpeg\|gif\|png\|ico\|cur\|gz\|svg\|svgz\|mp4\|ogg\|ogv\|webm\|htc)$ {
	expires 1M;
	access_log off;
	add_header Cache-Control "public";
	}

	# CSS and Javascript
	location ~* \.(?:css\|js)$ {
	expires 1y;
	access_log off;
	add_header Cache-Control "public";
	}

	# WebFonts
	# If you are NOT using cross-domain-fonts.conf, uncomment the following directive
	# location ~* \.(?:ttf\|ttc\|otf\|eot\|woff)$ {
	# expires 1M;
	# access_log off;
	# add_header Cache-Control "public";
	# }
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	fastcgi_param QUERY_STRING $query_string;
	fastcgi_param REQUEST_METHOD $request_method;
	fastcgi_param CONTENT_TYPE $content_type;
	fastcgi_param CONTENT_LENGTH $content_length;

	fastcgi_param SCRIPT_NAME $fastcgi_script_name;
	fastcgi_param REQUEST_URI $request_uri;
	fastcgi_param DOCUMENT_URI $document_uri;
	fastcgi_param DOCUMENT_ROOT $document_root;
	fastcgi_param SERVER_PROTOCOL $server_protocol;
	fastcgi_param HTTPS $https if_not_empty;

	fastcgi_param GATEWAY_INTERFACE CGI/1.1;
	fastcgi_param SERVER_SOFTWARE hidden;

	fastcgi_param REMOTE_ADDR $remote_addr;
	fastcgi_param REMOTE_PORT $remote_port;
	fastcgi_param SERVER_ADDR $server_addr;
	fastcgi_param SERVER_PORT $server_port;
	fastcgi_param SERVER_NAME $server_name;

	# PHP only, required if PHP was built with --enable-force-cgi-redirect
	fastcgi_param REDIRECT_STATUS 200;
	# www to non-www redirect -- duplicate content is BAD:
	# https://github.com/h5bp/html5-boilerplate/blob/5370479476dceae7cc3ea105946536d6bc0ee468/.htaccess#L362
	# Choose between www and non-www, listen on the wrong one and redirect to
	# the right one -- http://wiki.nginx.org/Pitfalls#Server_Name
	server {
	# don't forget to tell on which port this server listens
	listen 80;

	# listen on the non-www host
	server_name laravel.dev;

	# and redirect to the www host (declared below)
	return 301 http://www.laravel.dev$request_uri;
	}

	server {
	listen 80 deferred;

	# The host name to respond to
	server_name www.laravel.dev;

	# Path for static files
	root /srv/web/www.laravel.dev/public;
	index index.php;

	# This header enables the Cross-site scripting (XSS) filter built into most recent web browsers.
	# It's usually enabled by default anyway, so the role of this header is to re-enable the filter for
	# this particular website if it was disabled by the user.
	# https://www.owasp.org/index.php/List_of_useful_HTTP_headers
	add_header X-XSS-Protection "1; mode=block";

	# Example CSP configuration for getting Bootstrap from its CDN and whatever scripts Google hosts.
	# Read more about CSP at: www.html5rocks.com/en/tutorials/security/content-security-policy/
	#add_header Content-Security-Policy "default-src 'self'; script-src 'self' maxcdn.bootstrapcdn.com ajax.googleapis.com; img-src 'self'; style-src 'self' maxcdn.bootstrapcdn.com; font-src 'self' maxcdn.bootstrapcdn.com; frame-src none; object-src 'none'";


	location = /favicon.ico { access_log off; log_not_found off; }
	location = /robots.txt { access_log off; log_not_found off; }

	#Specify a charset
	charset utf-8;

	# Custom 404 page
	error_page 404 /404.html;

	# Include the basic h5bp config set
	include h5bp/basic.conf;

	location / {
	try_files $uri $uri/ /index.php$is_args$args;
	}

	location ~ \.php$ {
	try_files $uri /index.php =404;
	fastcgi_pass 127.0.0.1:15000;
	fastcgi_index index.php;
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	include fastcgi_params;
	}
	}
	#! /bin/sh

	### BEGIN INIT INFO
	# Provides: nginx
	# Required-Start: $all
	# Required-Stop: $all
	# Default-Start: 2 3 4 5
	# Default-Stop: 0 1 6
	# Short-Description: starts the nginx web server
	# Description: starts nginx using start-stop-daemon
	### END INIT INFO

	# FROM: http://www.rackspace.com/knowledge_center/article/ubuntu-and-debian-adding-an-nginx-init-script

	PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
	DAEMON=/usr/local/sbin/nginx
	NAME=nginx
	DESC=nginx
	LOGPATH=/srv/web/etc/log
	PIDPATH=/srv/web/etc/run/$NAME.pid

	test -x $DAEMON \|\| exit 0

	# Include nginx defaults if available
	if [ -f /etc/default/nginx ] ; then
	. /etc/default/nginx
	fi

	set -e

	. /lib/lsb/init-functions

	case "$1" in
	start)
	echo -n "Starting $DESC: "
	start-stop-daemon --start --quiet --pidfile $PIDPATH \
	--exec $DAEMON -- $DAEMON_OPTS \|\| true
	echo "$NAME."
	;;
	stop)
	echo -n "Stopping $DESC: "
	start-stop-daemon --stop --quiet --pidfile $PIDPATH \
	--exec $DAEMON \|\| true
	echo "$NAME."
	;;
	restart\|force-reload)
	echo -n "Restarting $DESC: "
	start-stop-daemon --stop --quiet --pidfile \
	$PIDPATH --exec $DAEMON \|\| true
	sleep 1
	start-stop-daemon --start --quiet --pidfile \
	$PIDPATH --exec $DAEMON -- $DAEMON_OPTS \|\| true
	echo "$NAME."
	;;
	reload)
	echo -n "Reloading $DESC configuration: "
	start-stop-daemon --stop --signal HUP --quiet --pidfile $PIDPATH \
	--exec $DAEMON \|\| true
	echo "$NAME."
	;;
	status)
	status_of_proc -p $PIDPATH "$DAEMON" nginx && exit 0 \|\| exit $?
	;;
	*)
	N=/etc/init.d/$NAME
	echo "Usage: $N {start\|stop\|restart\|reload\|force-reload\|status}" >&2
	exit 1
	;;
	esac

	exit 0
	# nginx Configuration File
	# http://wiki.nginx.org/Configuration
	# ORIGINAL file from the H5BP server config.
	# @ https://github.com/h5bp/server-configs-nginx


	# Run as a less privileged user for security reasons.
	user web web;

	# How many worker threads to run;
	# "auto" sets it to the number of CPU cores available in the system, and
	# offers the best performance. Don't set it higher than the number of CPU
	# cores if changing this parameter.

	# The maximum number of connections for Nginx is calculated by:
	# max_clients = worker_processes * worker_connections
	worker_processes 2;

	# Maximum open file descriptors per process;
	# should be > worker_connections.
	worker_rlimit_nofile 8192;

	events {
	# When you need > 8000 * cpu_cores connections, you start optimizing your OS,
	# and this is probably the point at which you hire people who are smarter than
	# you, as this is a lot of requests.
	worker_connections 8000;
	}

	# Default error log file
	# (this is only used when you don't override error_log on a server{} level)
	error_log /usr/local/var/log/nginx-error.log warn;
	pid /usr/local/var/run/nginx.pid;

	http {

	# Hide nginx version information.
	server_tokens off;

	# Define the MIME types for files.
	include mime.types;
	default_type application/octet-stream;

	# Update charset_types due to updated mime.types
	charset_types text/xml text/plain text/vnd.wap.wml application/x-javascript application/rss+xml text/css application/javascript application/json;

	# Format to use in log files
	log_format main '$remote_addr - $remote_user [$time_local] "$request" '
	'$status $body_bytes_sent "$http_referer" '
	'"$http_user_agent" "$http_x_forwarded_for"';

	# Default log file
	# (this is only used when you don't override access_log on a server{} level)
	access_log /usr/local/var/log/nginx-access.log main;

	# How long to allow each connection to stay idle; longer values are better
	# for each individual client, particularly for SSL, but means that worker
	# connections are tied up longer. (Default: 65)
	keepalive_timeout 20;

	# Speed up file transfers by using sendfile() to copy directly
	# between descriptors rather than using read()/write().
	sendfile on;

	# Tell Nginx not to send out partial frames; this increases throughput
	# since TCP frames are filled up before being sent out. (adds TCP_CORK)
	tcp_nopush on;

	# Tell Nginx to enable the Nagle buffering algorithm for TCP packets, which
	# collates several smaller packets together into one larger packet, thus saving
	# bandwidth at the cost of a nearly imperceptible increase to latency. (removes TCP_NODELAY)
	tcp_nodelay off;


	# Compression

	# Enable Gzip compressed.
	gzip on;

	# Enable compression both for HTTP/1.0 and HTTP/1.1 (required for CloudFront).
	gzip_http_version 1.0;

	# Compression level (1-9).
	# 5 is a perfect compromise between size and cpu usage, offering about
	# 75% reduction for most ascii files (almost identical to level 9).
	gzip_comp_level 5;

	# Don't compress anything that's already small and unlikely to shrink much
	# if at all (the default is 20 bytes, which is bad as that usually leads to
	# larger files after gzipping).
	gzip_min_length 256;

	# Compress data even for clients that are connecting to us via proxies,
	# identified by the "Via" header (required for CloudFront).
	gzip_proxied any;

	# Tell proxies to cache both the gzipped and regular version of a resource
	# whenever the client's Accept-Encoding capabilities header varies;
	# Avoids the issue where a non-gzip capable client (which is extremely rare
	# today) would display gibberish if their proxy gave them the gzipped version.
	gzip_vary on;

	# Compress all output labeled with one of the following MIME-types.
	gzip_types
	application/atom+xml
	application/javascript
	application/json
	application/rss+xml
	application/vnd.ms-fontobject
	application/x-font-ttf
	application/x-web-app-manifest+json
	application/xhtml+xml
	application/xml
	font/opentype
	image/svg+xml
	image/x-icon
	text/css
	text/plain
	text/x-component;
	# text/html is always compressed by HttpGzipModule


	# This should be turned on if you are going to have pre-compressed copies (.gz) of
	# static files available. If not it should be left off as it will cause extra I/O
	# for the check. It is best if you enable this in a location{} block for
	# a specific directory, or on an individual server{} level.
	# gzip_static on;

	# Protect against the BEAST attack by preferring RC4-SHA when using SSLv3 and TLS protocols.
	# Note that TLSv1.1 and TLSv1.2 are immune to the beast attack but only work with OpenSSL v1.0.1 and higher and has limited client support.
	# Ciphers set to best allow protection from Beast, while providing forwarding secrecy, as defined by Mozilla - https://wiki.mozilla.org/Security/Server_Side_TLS#Nginx
	ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
	ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:AES128:AES256:RC4-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK;
	ssl_prefer_server_ciphers on;

	# Optimize SSL by caching session parameters for 10 minutes. This cuts down on the number of expensive SSL handshakes.
	# The handshake is the most CPU-intensive operation, and by default it is re-negotiated on every new/parallel connection.
	# By enabling a cache (of type "shared between all Nginx workers"), we tell the client to re-use the already negotiated state.
	# Further optimization can be achieved by raising keepalive_timeout, but that shouldn't be done unless you serve primarily HTTPS.
	ssl_session_cache shared:SSL:10m; # a 1mb cache can hold about 4000 sessions, so we can hold 40000 sessions
	ssl_session_timeout 10m;

	# This default SSL certificate will be served whenever the client lacks support for SNI (Server Name Indication).
	# Make it a symlink to the most important certificate you have, so that users of IE 8 and below on WinXP can see your main site without SSL errors.
	#ssl_certificate /etc/nginx/default_ssl.crt;
	#ssl_certificate_key /etc/nginx/default_ssl.key;

	include sites-enabled/*;
	}
	#! /bin/sh

	### BEGIN INIT INFO
	# Provides: php-fpm
	# Required-Start: $remote_fs $network
	# Required-Stop: $remote_fs $network
	# Default-Start: 2 3 4 5
	# Default-Stop: 0 1 6
	# Short-Description: starts php-fpm
	# Description: starts the PHP FastCGI Process Manager daemon
	### END INIT INFO

	prefix=/usr/local
	exec_prefix=${prefix}

	php_fpm_BIN=${exec_prefix}/sbin/php-fpm
	php_fpm_CONF=${prefix}/etc/php/php-fpm.conf
	php_fpm_PID=${prefix}/var/run/php-fpm.pid


	php_opts="--fpm-config $php_fpm_CONF --pid $php_fpm_PID"


	wait_for_pid () {
	try=0

	while test $try -lt 35 ; do

	case "$1" in
	'created')
	if [ -f "$2" ] ; then
	try=''
	break
	fi
	;;

	'removed')
	if [ ! -f "$2" ] ; then
	try=''
	break
	fi
	;;
	esac

	echo -n .
	try=`expr $try + 1`
	sleep 1

	done

	}

	case "$1" in
	start)
	echo -n "Starting php-fpm "

	$php_fpm_BIN --daemonize $php_opts

	if [ "$?" != 0 ] ; then
	echo " failed"
	exit 1
	fi

	wait_for_pid created $php_fpm_PID

	if [ -n "$try" ] ; then
	echo " failed"
	exit 1
	else
	echo " done"
	fi
	;;

	stop)
	echo -n "Gracefully shutting down php-fpm "

	if [ ! -r $php_fpm_PID ] ; then
	echo "warning, no pid file found - php-fpm is not running ?"
	exit 1
	fi

	kill -QUIT `cat $php_fpm_PID`

	wait_for_pid removed $php_fpm_PID

	if [ -n "$try" ] ; then
	echo " failed. Use force-quit"
	exit 1
	else
	echo " done"
	fi
	;;

	status)
	if [ ! -r $php_fpm_PID ] ; then
	echo "php-fpm is stopped"
	exit 0
	fi

	PID=`cat $php_fpm_PID`
	if ps -p $PID \| grep -q $PID; then
	echo "php-fpm (pid $PID) is running..."
	else
	echo "php-fpm dead but pid file exists"
	fi
	;;

	force-quit)
	echo -n "Terminating php-fpm "

	if [ ! -r $php_fpm_PID ] ; then
	echo "warning, no pid file found - php-fpm is not running ?"
	exit 1
	fi

	kill -TERM `cat $php_fpm_PID`

	wait_for_pid removed $php_fpm_PID

	if [ -n "$try" ] ; then
	echo " failed"
	exit 1
	else
	echo " done"
	fi
	;;

	restart)
	$0 stop
	$0 start
	;;

	reload)

	echo -n "Reload service php-fpm "

	if [ ! -r $php_fpm_PID ] ; then
	echo "warning, no pid file found - php-fpm is not running ?"
	exit 1
	fi

	kill -USR2 `cat $php_fpm_PID`

	echo " done"
	;;

	*)
	echo "Usage: $0 {start\|stop\|force-quit\|restart\|reload\|status}"
	exit 1
	;;

	esac
	;;;;;;;;;;;;;;;;;;;;;
	; FPM Configuration ;
	;;;;;;;;;;;;;;;;;;;;;

	; All relative paths in this configuration file are relative to PHP's install
	; prefix (/usr/local). This prefix can be dynamically changed by using the
	; '-p' argument from the command line.

	; Include one or more files. If glob(3) exists, it is used to include a bunch of
	; files from a glob(3) pattern. This directive can be used everywhere in the
	; file.
	; Relative path can also be used. They will be prefixed by:
	; - the global prefix if it's been set (-p argument)
	; - /usr/local otherwise
	;include=etc/fpm.d/*.conf

	;;;;;;;;;;;;;;;;;;
	; Global Options ;
	;;;;;;;;;;;;;;;;;;

	[global]
	; Pid file
	; Note: the default prefix is /usr/local/var
	; Default Value: none
	pid = /usr/local/var/run/php-fpm.pid

	; Error log file
	; If it's set to "syslog", log is sent to syslogd instead of being written
	; in a local file.
	; Note: the default prefix is /usr/local/var
	; Default Value: log/php-fpm.log
	error_log = /usr/local/var/log/php-fpm-error.log

	; syslog_facility is used to specify what type of program is logging the
	; message. This lets syslogd specify that messages from different facilities
	; will be handled differently.
	; See syslog(3) for possible values (ex daemon equiv LOG_DAEMON)
	; Default Value: daemon
	;syslog.facility = daemon

	; syslog_ident is prepended to every message. If you have multiple FPM
	; instances running on the same server, you can change the default value
	; which must suit common needs.
	; Default Value: php-fpm
	;syslog.ident = php-fpm

	; Log level
	; Possible Values: alert, error, warning, notice, debug
	; Default Value: notice
	;log_level = notice

	; If this number of child processes exit with SIGSEGV or SIGBUS within the time
	; interval set by emergency_restart_interval then FPM will restart. A value
	; of '0' means 'Off'.
	; Default Value: 0
	;emergency_restart_threshold = 0

	; Interval of time used by emergency_restart_interval to determine when
	; a graceful restart will be initiated. This can be useful to work around
	; accidental corruptions in an accelerator's shared memory.
	; Available Units: s(econds), m(inutes), h(ours), or d(ays)
	; Default Unit: seconds
	; Default Value: 0
	;emergency_restart_interval = 0

	; Time limit for child processes to wait for a reaction on signals from master.
	; Available units: s(econds), m(inutes), h(ours), or d(ays)
	; Default Unit: seconds
	; Default Value: 0
	;process_control_timeout = 0

	; The maximum number of processes FPM will fork. This has been design to control
	; the global number of processes when using dynamic PM within a lot of pools.
	; Use it with caution.
	; Note: A value of 0 indicates no limit
	; Default Value: 0
	; process.max = 128

	; Specify the nice(2) priority to apply to the master process (only if set)
	; The value can vary from -19 (highest priority) to 20 (lower priority)
	; Note: - It will only work if the FPM master process is launched as root
	; - The pool process will inherit the master process priority
	; unless it specified otherwise
	; Default Value: no set
	; process.priority = -19

	; Send FPM to background. Set to 'no' to keep FPM in foreground for debugging.
	; Default Value: yes
	;daemonize = yes

	; Set open file descriptor rlimit for the master process.
	; Default Value: system defined value
	;rlimit_files = 1024

	; Set max core size rlimit for the master process.
	; Possible Values: 'unlimited' or an integer greater or equal to 0
	; Default Value: system defined value
	;rlimit_core = 0

	; Specify the event mechanism FPM will use. The following is available:
	; - select (any POSIX os)
	; - poll (any POSIX os)
	; - epoll (linux >= 2.5.44)
	; - kqueue (FreeBSD >= 4.1, OpenBSD >= 2.9, NetBSD >= 2.0)
	; - /dev/poll (Solaris >= 7)
	; - port (Solaris >= 10)
	; Default Value: not set (auto detection)
	;events.mechanism = epoll

	; When FPM is build with systemd integration, specify the interval,
	; in second, between health report notification to systemd.
	; Set to 0 to disable.
	; Available Units: s(econds), m(inutes), h(ours)
	; Default Unit: seconds
	; Default value: 10
	;systemd_interval = 10

	;;;;;;;;;;;;;;;;;;;;
	; Pool Definitions ;
	;;;;;;;;;;;;;;;;;;;;

	; Multiple pools of child processes may be started with different listening
	; ports and different management options. The name of the pool will be
	; used in logs and stats. There is no limitation on the number of pools which
	; FPM can handle. Your system will tell you anyway :)

	; Start a new pool named 'www'.
	; the variable $pool can we used in any directive and will be replaced by the
	; pool name ('www' here)
	[www]

	; Per pool prefix
	; It only applies on the following directives:
	; - 'slowlog'
	; - 'listen' (unixsocket)
	; - 'chroot'
	; - 'chdir'
	; - 'php_values'
	; - 'php_admin_values'
	; When not set, the global prefix (or NONE) applies instead.
	; Note: This directive can also be relative to the global prefix.
	; Default Value: none
	;prefix = /path/to/pools/$pool

	; Unix user/group of processes
	; Note: The user is mandatory. If the group is not set, the default user's group
	; will be used.
	user = web
	group = web

	; The address on which to accept FastCGI requests.
	; Valid syntaxes are:
	; 'ip.add.re.ss:port' - to listen on a TCP socket to a specific address on
	; a specific port;
	; 'port' - to listen on a TCP socket to all addresses on a
	; specific port;
	; '/path/to/unix/socket' - to listen on a unix socket.
	; Note: This value is mandatory.
	listen = 127.0.0.1:15000

	; Set listen(2) backlog.
	; Default Value: 65535 (-1 on FreeBSD and OpenBSD)
	;listen.backlog = 65535

	; Set permissions for unix socket, if one is used. In Linux, read/write
	; permissions must be set in order to allow connections from a web server. Many
	; BSD-derived systems allow connections regardless of permissions.
	; Default Values: user and group are set as the running user
	; mode is set to 0660
	;listen.owner = nobody
	;listen.group = nobody
	;listen.mode = 0660

	; List of ipv4 addresses of FastCGI clients which are allowed to connect.
	; Equivalent to the FCGI_WEB_SERVER_ADDRS environment variable in the original
	; PHP FCGI (5.2.2+). Makes sense only with a tcp listening socket. Each address
	; must be separated by a comma. If this value is left blank, connections will be
	; accepted from any ip address.
	; Default Value: any
	listen.allowed_clients = 127.0.0.1

	; Specify the nice(2) priority to apply to the pool processes (only if set)
	; The value can vary from -19 (highest priority) to 20 (lower priority)
	; Note: - It will only work if the FPM master process is launched as root
	; - The pool processes will inherit the master process priority
	; unless it specified otherwise
	; Default Value: no set
	; process.priority = -19

	; Choose how the process manager will control the number of child processes.
	; Possible Values:
	; static - a fixed number (pm.max_children) of child processes;
	; dynamic - the number of child processes are set dynamically based on the
	; following directives. With this process management, there will be
	; always at least 1 children.
	; pm.max_children - the maximum number of children that can
	; be alive at the same time.
	; pm.start_servers - the number of children created on startup.
	; pm.min_spare_servers - the minimum number of children in 'idle'
	; state (waiting to process). If the number
	; of 'idle' processes is less than this
	; number then some children will be created.
	; pm.max_spare_servers - the maximum number of children in 'idle'
	; state (waiting to process). If the number
	; of 'idle' processes is greater than this
	; number then some children will be killed.
	; ondemand - no children are created at startup. Children will be forked when
	; new requests will connect. The following parameter are used:
	; pm.max_children - the maximum number of children that
	; can be alive at the same time.
	; pm.process_idle_timeout - The number of seconds after which
	; an idle process will be killed.
	; Note: This value is mandatory.
	pm = dynamic

	; The number of child processes to be created when pm is set to 'static' and the
	; maximum number of child processes when pm is set to 'dynamic' or 'ondemand'.
	; This value sets the limit on the number of simultaneous requests that will be
	; served. Equivalent to the ApacheMaxClients directive with mpm_prefork.
	; Equivalent to the PHP_FCGI_CHILDREN environment variable in the original PHP
	; CGI. The below defaults are based on a server without much resources. Don't
	; forget to tweak pm.* to fit your needs.
	; Note: Used when pm is set to 'static', 'dynamic' or 'ondemand'
	; Note: This value is mandatory.
	pm.max_children = 5

	; The number of child processes created on startup.
	; Note: Used only when pm is set to 'dynamic'
	; Default Value: min_spare_servers + (max_spare_servers - min_spare_servers) / 2
	pm.start_servers = 2

	; The desired minimum number of idle server processes.
	; Note: Used only when pm is set to 'dynamic'
	; Note: Mandatory when pm is set to 'dynamic'
	pm.min_spare_servers = 1

	; The desired maximum number of idle server processes.
	; Note: Used only when pm is set to 'dynamic'
	; Note: Mandatory when pm is set to 'dynamic'
	pm.max_spare_servers = 3

	; The number of seconds after which an idle process will be killed.
	; Note: Used only when pm is set to 'ondemand'
	; Default Value: 10s
	;pm.process_idle_timeout = 10s;

	; The number of requests each child process should execute before respawning.
	; This can be useful to work around memory leaks in 3rd party libraries. For
	; endless request processing specify '0'. Equivalent to PHP_FCGI_MAX_REQUESTS.
	; Default Value: 0
	;pm.max_requests = 500

	; The URI to view the FPM status page. If this value is not set, no URI will be
	; recognized as a status page. It shows the following informations:
	; pool - the name of the pool;
	; process manager - static, dynamic or ondemand;
	; start time - the date and time FPM has started;
	; start since - number of seconds since FPM has started;
	; accepted conn - the number of request accepted by the pool;
	; listen queue - the number of request in the queue of pending
	; connections (see backlog in listen(2));
	; max listen queue - the maximum number of requests in the queue
	; of pending connections since FPM has started;
	; listen queue len - the size of the socket queue of pending connections;
	; idle processes - the number of idle processes;
	; active processes - the number of active processes;
	; total processes - the number of idle + active processes;
	; max active processes - the maximum number of active processes since FPM
	; has started;
	; max children reached - number of times, the process limit has been reached,
	; when pm tries to start more children (works only for
	; pm 'dynamic' and 'ondemand');
	; Value are updated in real time.
	; Example output:
	; pool: www
	; process manager: static
	; start time: 01/Jul/2011:17:53:49 +0200
	; start since: 62636
	; accepted conn: 190460
	; listen queue: 0
	; max listen queue: 1
	; listen queue len: 42
	; idle processes: 4
	; active processes: 11
	; total processes: 15
	; max active processes: 12
	; max children reached: 0
	;
	; By default the status page output is formatted as text/plain. Passing either
	; 'html', 'xml' or 'json' in the query string will return the corresponding
	; output syntax. Example:
	; http://www.foo.bar/status
	; http://www.foo.bar/status?json
	; http://www.foo.bar/status?html
	; http://www.foo.bar/status?xml
	;
	; By default the status page only outputs short status. Passing 'full' in the
	; query string will also return status for each pool process.
	; Example:
	; http://www.foo.bar/status?full
	; http://www.foo.bar/status?json&full
	; http://www.foo.bar/status?html&full
	; http://www.foo.bar/status?xml&full
	; The Full status returns for each process:
	; pid - the PID of the process;
	; state - the state of the process (Idle, Running, ...);
	; start time - the date and time the process has started;
	; start since - the number of seconds since the process has started;
	; requests - the number of requests the process has served;
	; request duration - the duration in µs of the requests;
	; request method - the request method (GET, POST, ...);
	; request URI - the request URI with the query string;
	; content length - the content length of the request (only with POST);
	; user - the user (PHP_AUTH_USER) (or '-' if not set);
	; script - the main script called (or '-' if not set);
	; last request cpu - the %cpu the last request consumed
	; it's always 0 if the process is not in Idle state
	; because CPU calculation is done when the request
	; processing has terminated;
	; last request memory - the max amount of memory the last request consumed
	; it's always 0 if the process is not in Idle state
	; because memory calculation is done when the request
	; processing has terminated;
	; If the process is in Idle state, then informations are related to the
	; last request the process has served. Otherwise informations are related to
	; the current request being served.
	; Example output:
	; ************************
	; pid: 31330
	; state: Running
	; start time: 01/Jul/2011:17:53:49 +0200
	; start since: 63087
	; requests: 12808
	; request duration: 1250261
	; request method: GET
	; request URI: /test_mem.php?N=10000
	; content length: 0
	; user: -
	; script: /home/fat/web/docs/php/test_mem.php
	; last request cpu: 0.00
	; last request memory: 0
	;
	; Note: There is a real-time FPM status monitoring sample web page available
	; It's available in: ${prefix}/share/fpm/status.html
	;
	; Note: The value must start with a leading slash (/). The value can be
	; anything, but it may not be a good idea to use the .php extension or it
	; may conflict with a real PHP file.
	; Default Value: not set
	;pm.status_path = /status

	; The ping URI to call the monitoring page of FPM. If this value is not set, no
	; URI will be recognized as a ping page. This could be used to test from outside
	; that FPM is alive and responding, or to
	; - create a graph of FPM availability (rrd or such);
	; - remove a server from a group if it is not responding (load balancing);
	; - trigger alerts for the operating team (24/7).
	; Note: The value must start with a leading slash (/). The value can be
	; anything, but it may not be a good idea to use the .php extension or it
	; may conflict with a real PHP file.
	; Default Value: not set
	;ping.path = /ping

	; This directive may be used to customize the response of a ping request. The
	; response is formatted as text/plain with a 200 response code.
	; Default Value: pong
	;ping.response = pong

	; The access log file
	; Default: not set
	;access.log = log/$pool.access.log

	; The access log format.
	; The following syntax is allowed
	; %%: the '%' character
	; %C: %CPU used by the request
	; it can accept the following format:
	; - %{user}C for user CPU only
	; - %{system}C for system CPU only
	; - %{total}C for user + system CPU (default)
	; %d: time taken to serve the request
	; it can accept the following format:
	; - %{seconds}d (default)
	; - %{miliseconds}d
	; - %{mili}d
	; - %{microseconds}d
	; - %{micro}d
	; %e: an environment variable (same as $_ENV or $_SERVER)
	; it must be associated with embraces to specify the name of the env
	; variable. Some exemples:
	; - server specifics like: %{REQUEST_METHOD}e or %{SERVER_PROTOCOL}e
	; - HTTP headers like: %{HTTP_HOST}e or %{HTTP_USER_AGENT}e
	; %f: script filename
	; %l: content-length of the request (for POST request only)
	; %m: request method
	; %M: peak of memory allocated by PHP
	; it can accept the following format:
	; - %{bytes}M (default)
	; - %{kilobytes}M
	; - %{kilo}M
	; - %{megabytes}M
	; - %{mega}M
	; %n: pool name
	; %o: output header
	; it must be associated with embraces to specify the name of the header:
	; - %{Content-Type}o
	; - %{X-Powered-By}o
	; - %{Transfert-Encoding}o
	; - ....
	; %p: PID of the child that serviced the request
	; %P: PID of the parent of the child that serviced the request
	; %q: the query string
	; %Q: the '?' character if query string exists
	; %r: the request URI (without the query string, see %q and %Q)
	; %R: remote IP address
	; %s: status (response code)
	; %t: server time the request was received
	; it can accept a strftime(3) format:
	; %d/%b/%Y:%H:%M:%S %z (default)
	; %T: time the log has been written (the request has finished)
	; it can accept a strftime(3) format:
	; %d/%b/%Y:%H:%M:%S %z (default)
	; %u: remote user
	;
	; Default: "%R - %u %t \"%m %r\" %s"
	;access.format = "%R - %u %t \"%m %r%Q%q\" %s %f %{mili}d %{kilo}M %C%%"

	; The log file for slow requests
	; Default Value: not set
	; Note: slowlog is mandatory if request_slowlog_timeout is set
	slowlog = /usr/local/var/log/$pool.log.slow

	; The timeout for serving a single request after which a PHP backtrace will be
	; dumped to the 'slowlog' file. A value of '0s' means 'off'.
	; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
	; Default Value: 0
	;request_slowlog_timeout = 0

	; The timeout for serving a single request after which the worker process will
	; be killed. This option should be used when the 'max_execution_time' ini option
	; does not stop script execution for some reason. A value of '0' means 'off'.
	; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
	; Default Value: 0
	;request_terminate_timeout = 0

	; Set open file descriptor rlimit.
	; Default Value: system defined value
	;rlimit_files = 1024

	; Set max core size rlimit.
	; Possible Values: 'unlimited' or an integer greater or equal to 0
	; Default Value: system defined value
	;rlimit_core = 0

	; Chroot to this directory at the start. This value must be defined as an
	; absolute path. When this value is not set, chroot is not used.
	; Note: you can prefix with '$prefix' to chroot to the pool prefix or one
	; of its subdirectories. If the pool prefix is not set, the global prefix
	; will be used instead.
	; Note: chrooting is a great security feature and should be used whenever
	; possible. However, all PHP paths will be relative to the chroot
	; (error_log, sessions.save_path, ...).
	; Default Value: not set
	;chroot =

	; Chdir to this directory at the start.
	; Note: relative path can be used.
	; Default Value: current directory or / when chroot
	;chdir = /var/www

	; Redirect worker stdout and stderr into main error log. If not set, stdout and
	; stderr will be redirected to /dev/null according to FastCGI specs.
	; Note: on highloaded environement, this can cause some delay in the page
	; process time (several ms).
	; Default Value: no
	;catch_workers_output = yes

	; Clear environment in FPM workers
	; Prevents arbitrary environment variables from reaching FPM worker processes
	; by clearing the environment in workers before env vars specified in this
	; pool configuration are added.
	; Setting to "no" will make all environment variables available to PHP code
	; via getenv(), $_ENV and $_SERVER.
	; Default Value: yes
	;clear_env = no

	; Limits the extensions of the main script FPM will allow to parse. This can
	; prevent configuration mistakes on the web server side. You should only limit
	; FPM to .php extensions to prevent malicious users to use other extensions to
	; exectute php code.
	; Note: set an empty value to allow all extensions.
	; Default Value: .php
	;security.limit_extensions = .php

	; Pass environment variables like LD_LIBRARY_PATH. All $VARIABLEs are taken from
	; the current environment.
	; Default Value: clean env
	;env[HOSTNAME] = $HOSTNAME
	;env[PATH] = /usr/local/bin:/usr/bin:/bin
	;env[TMP] = /tmp
	;env[TMPDIR] = /tmp
	;env[TEMP] = /tmp

	; Additional php.ini defines, specific to this pool of workers. These settings
	; overwrite the values previously defined in the php.ini. The directives are the
	; same as the PHP SAPI:
	; php_value/php_flag - you can set classic ini defines which can
	; be overwritten from PHP call 'ini_set'.
	; php_admin_value/php_admin_flag - these directives won't be overwritten by
	; PHP call 'ini_set'
	; For php_*flag, valid values are on, off, 1, 0, true, false, yes or no.

	; Defining 'extension' will load the corresponding shared extension from
	; extension_dir. Defining 'disable_functions' or 'disable_classes' will not
	; overwrite previously defined php.ini values, but will append the new value
	; instead.

	; Note: path INI options can be relative and will be expanded with the prefix
	; (pool, global or /usr/local)

	; Default Value: nothing is defined by default except the values in php.ini and
	; specified at startup with the -d argument
	;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f [email protected]
	;php_flag[display_errors] = off
	;php_admin_value[error_log] = /var/log/fpm-php.www.log
	;php_admin_flag[log_errors] = on
	;php_admin_value[memory_limit] = 32M
	date.timezone = "America/New_York"
	mysqli.default_socket="/var/run/mysqld/mysqld.sock"
	pdo_mysql.default_socket="/var/run/mysqld/mysqld.sock"
	memory_limit = "256M"
	upload_max_filesize = "20M"
	opcache.memory_consumption=128
	opcache.interned_strings_buffer=8
	opcache.max_accelerated_files=4000
	opcache.revalidate_freq=60
	opcache.fast_shutdown=1
	opcache.enable_cli=1
	opcache.error_log="/srv/web/etc/log/php-opcache-error.log"
	error_reporting = E_ALL
	display_errors = On
	cgi.fix_pathinfo=0
	extension=imagick.so