June 05, 2011 06:26AM
On Sun, Jun 5, 2011 at 5:01 PM, Kraiser <nginx-forum@nginx.us> wrote:
> What do you guys think about implement this into nginx just like it is
> in apache?
> if ( $fastcgi_script_name ~ \..*\/.*php ) {
> return 403;
> }
> because without that some servers which allows to upload images are
> vulnerable to external exploits.
>

or just

try_files $uri =404;

_______________________________________________
nginx mailing list
nginx@nginx.org
http://nginx.org/mailman/listinfo/nginx
Subject Author Posted

Some security vulnerable

Kraiser June 05, 2011 06:01AM

Re: Some security vulnerable

edogawaconan June 05, 2011 06:26AM

Re: Some security vulnerable

Ensiferous June 05, 2011 07:20AM

Re: Some security vulnerable

Kraiser June 05, 2011 08:03AM

Re: Some security vulnerable

edogawaconan June 05, 2011 08:20AM

Re: Some security vulnerable

Thomas Love June 05, 2011 09:42AM

Re: Some security vulnerable

António P. P. Almeida June 05, 2011 01:42PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 156
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 500 on July 15, 2024
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready