Welcome! Log In Create A New Profile

Re: nginx rules to deny php/perl execution

Forum List Message List New Topic Print View

António P. P. Almeida

November 20, 2010 02:56PM

On 20 Nov 2010 19h31 WET, nginx-forum@nginx.us wrote:

Olá Nuno,

> Olá António,
>
> that's exactly what I need, since these directories have write
> permissions, but which rules should I have?
>
> placing something like this will work, but the user can see/read the
> php content and I don't want that
>
> [code]
> location ~ ^/(cache|static|etc)/ {
> root /var/www;
> }
> [/code]
>
> How do I deny execution/read access to those files
> (php|pl!php3|php4|php5)

Try this:

location ~* ^/(?:cache|static|etc)/.*\.(?:pl|php[345]*)$ {
return 404; # or 403
}

This directive should precede those that are "legal" in that location
(static, cache, etc).

--- appa

_______________________________________________
nginx mailing list
nginx@nginx.org
http://nginx.org/mailman/listinfo/nginx

Reply Quote

RSS

Subject	Author	Posted
nginx rules to deny php/perl execution	nfn	November 20, 2010 01:39PM
Re: nginx rules to deny php/perl execution	António P. P. Almeida	November 20, 2010 02:08PM
Re: nginx rules to deny php/perl execution	António P. P. Almeida	November 20, 2010 02:24PM
Re: nginx rules to deny php/perl execution	nfn	November 20, 2010 02:31PM
Re: nginx rules to deny php/perl execution	nfn	November 20, 2010 02:50PM
Re: nginx rules to deny php/perl execution	nfn	November 20, 2010 03:05PM
Re: nginx rules to deny php/perl execution	nfn	November 20, 2010 05:27PM
Re: nginx rules to deny php/perl execution	António P. P. Almeida	November 20, 2010 02:56PM
Re: nginx rules to deny php/perl execution	António P. P. Almeida	November 20, 2010 03:14PM
Re: nginx rules to deny php/perl execution	António P. P. Almeida	November 20, 2010 03:20PM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 316

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018