Welcome! Log In Create A New Profile

Advanced

Possible nginx security enhancement

Michele Alzetta
July 28, 2011 02:00PM
Hallo all,

I have been using nginx very satisfactorily for a few years by now.

Recently I noticed I was having problems with my sites, and finally traced
them back to an nginx problem.

I use nginx on a gentoo linux system, and when nginx is emerged the
necessary directories are created in /var/tmp:

nginx - client
- fastcgi
- proxy
- scgi
- uwsgi

What happens is that, if /var/tmp/nginx directory is missing, nginx will
not start at all. However, if subdirectories have been cancelled, nginx
will start normally, but sites won't work properly ( things like uploading
attachments for squirrelmail or changing theme preferences in drupal etc.
) In my case, the /var/tmp/nginx subdirectories had been cancelled (my
fault)

I appreciate the fact that nginx checks the conf file before starting or
restarting - helps avoiding a mess when you've edited a file and forgotten
an extra } somewhere.

Wouldn't it be good if it also checked for the proper directories to
exist? Or even created them if they didn't exist?

/var/tmp is a directory which may be cleaned up periodically to avoid
useless clutter and this sometimes leads to weird mistakes.

Just a suggestion.

Michele

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Subject Author Posted

Possible nginx security enhancement

Michele Alzetta July 28, 2011 02:00PM

Re: Possible nginx security enhancement

Igor Sysoev July 28, 2011 02:24PM

Re: Possible nginx security enhancement

Michele Alzetta July 29, 2011 03:16AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 122
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready