diff options
| author | Andreas Fischer <bantu@phpbb.com> | 2011-01-24 17:35:10 +0100 |
|---|---|---|
| committer | Andreas Fischer <bantu@phpbb.com> | 2011-01-24 17:35:10 +0100 |
| commit | a970219d61204b2e8e5d937d448ac25c44ce5fd0 (patch) | |
| tree | 3719f551e1af248a9205f0c6daee60970443baac /phpBB/docs/nginx.sample.conf | |
| parent | e1e84f9bd080bb6cad604611535dc38e4109eb47 (diff) | |
| download | forums-a970219d61204b2e8e5d937d448ac25c44ce5fd0.tar forums-a970219d61204b2e8e5d937d448ac25c44ce5fd0.tar.gz forums-a970219d61204b2e8e5d937d448ac25c44ce5fd0.tar.bz2 forums-a970219d61204b2e8e5d937d448ac25c44ce5fd0.tar.xz forums-a970219d61204b2e8e5d937d448ac25c44ce5fd0.zip | |
[ticket/10007] Add directive 'internal' to blocked folders in nginx config.
The "deny" and "access" directives are IP-based in general. Both directives
only support IPv6 from nginx 0.8.22 onwards, on older versions of nginx those
directives have no effect on IPv6 requests. Thus they do not block access for
IPv6 requests.
Adding the "internal" directive blocks external access in general (both IPv4
and IPv6) and makes the web server return a status code 404 (Not Found)
response.
See:
http://nginx.org/en/CHANGES
http://wiki.nginx.org/HttpCoreModule#internal
PHPBB3-10007
Diffstat (limited to 'phpBB/docs/nginx.sample.conf')
| -rw-r--r-- | phpBB/docs/nginx.sample.conf | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/phpBB/docs/nginx.sample.conf b/phpBB/docs/nginx.sample.conf index a22a126ff4..2a11e057c5 100644 --- a/phpBB/docs/nginx.sample.conf +++ b/phpBB/docs/nginx.sample.conf @@ -45,6 +45,7 @@ http { # Deny access to internal phpbb files. location ~ /(config\.php|common\.php|includes|cache|files|store|images/avatars/upload) { + internal; deny all; } @@ -59,6 +60,7 @@ http { # Deny access to version control system directories. location ~ /\.svn|/\.git { + internal; deny all; } } |