Welcome! Log In Create A New Profile

Advanced

location ~ \..*/.*\.php$

Previous Message Next Message
Forum List Message List New Topic Print View
Pavel V.
March 11, 2011 08:20AM
Здравствуйте!

В примерах конфигурации drupal в пакете nginx в debian нашел
следующее:

# This location block protects against a known attack. It happens if
# the attacker uploads a non-php file and attempts to run it as a
# php file on the server.
location ~ \..*/.*\.php$ {
return 403;
}

В каких случаях (при каком запросе) может проявиться "неожиданное
поведение" в виде исполнения не-php файла и за счет чего?



--
С уважением,
Pavel mailto:pavel2000@ngs.ru


_______________________________________________
nginx-ru mailing list
nginx-ru@nginx.org
http://nginx.org/mailman/listinfo/nginx-ru
Reply Quote
RSS
Subject Author Posted

location ~ \..*/.*\.php$

Pavel V. March 11, 2011 08:20AM

Re: location ~ \..*/.*\.php$

Дмитрий Андреев March 11, 2011 08:40AM

Re: location ~ \..*/.*\.php$

Pavel V. March 11, 2011 09:36AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 205
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready