Welcome! Log In Create A New Profile

Advanced

Re: How to use Nginx to restrict access to everyfiles to 127.0.0.1, except the php files in /

January 08, 2015 05:49PM
Here is what i found to achieve this :

i denied access to every php files :

location ~ \.php$ {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/var/run/php5-fpm.sock;
fastcgi_index index.php;
include fastcgi_params;
allow 127.0.0.1;
deny all;
}


and then i create one rule per page (takes time with some scripts, but it worth it :)

location ~* ^/myfile.php$ {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
try_files $uri $uri/ /index.php?q=$args;
fastcgi_pass unix:/var/run/php5-fpm.sock;
fastcgi_index index.php;
include fastcgi_params;
include /etc/nginx/naxsi.rules;
allow all;
}

Every tutorials i found on nginx tell us to allow / deny in location /. ...but ^(.+\.php) is another location, not included in location /

If i follow most tutorials i am still able to reach the php files inside the location / even if i denied access to all of them. Doing this way works great :)

I hope this will help someone ... ...someday :)
Cheers :)
Subject Author Posted

How to use Nginx to restrict access to everyfiles to 127.0.0.1, except the php files in /

carlg November 12, 2014 05:26AM

Re: How to use Nginx to restrict access to everyfiles to 127.0.0.1, except the php files in /

Maxim Dounin November 12, 2014 06:26AM

Re: How to use Nginx to restrict access to everyfiles to 127.0.0.1, except the php files in /

carlg November 13, 2014 03:33AM

Re: How to use Nginx to restrict access to everyfiles to 127.0.0.1, except the php files in /

carlg January 08, 2015 05:49PM

Re: How to use Nginx to restrict access to everyfiles to 127.0.0.1, except the php files in /

Maxim Dounin November 13, 2014 07:56AM

Re: How to use Nginx to restrict access to everyfiles to 127.0.0.1, except the php files in /

B.R. January 09, 2015 02:00PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 95
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready