Welcome! Log In Create A New Profile

Advanced

Whitelisting files with certain extensions

Previous Message Next Message
Forum List Message List New Topic Print View
ST
August 10, 2017 09:30AM
Hello,

we had following problem: one of the developers has saved a .php file
as .php.old. This file, if requested directly, was offered by nginx for
download and thus exposed. What is the right way to solve this?

1. initial idea was to whitelist all the legitimate file extensions that
we use and block the rest. Is this the right approach? If yes - what is
the best way to do this?

1.1 we have one directory that has legitimate files without any
extension that we also want to serve... how to make an exception for
this directory?

Thank you!

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Reply Quote
RSS
Subject Author Posted

Whitelisting files with certain extensions

ST August 10, 2017 09:30AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 275
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready