diff options
| author | M. Dent <dentm42@gmail.com> | 2019-01-28 05:41:26 +0100 |
|---|---|---|
| committer | M. Dent <dentm42@gmail.com> | 2019-01-28 05:41:26 +0100 |
| commit | e3d39fbf3fe99c6ce9de256290e83c49fea8808b (patch) | |
| tree | e2cf4ab2725552ce88849ccc6cebf6ccb14a2db4 | |
| parent | 17d9e30be53893a6651a3d17435936c548df6445 (diff) | |
| parent | e262de9b2ddb48d618f45a1b28619b068f76ebac (diff) | |
| download | volse-hubzilla-e3d39fbf3fe99c6ce9de256290e83c49fea8808b.tar.gz volse-hubzilla-e3d39fbf3fe99c6ce9de256290e83c49fea8808b.tar.bz2 volse-hubzilla-e3d39fbf3fe99c6ce9de256290e83c49fea8808b.zip | |
Merge branch 'core_fixes' into 'dev'
update nginx and lighttpd sample server configs to explicit dissalow access to util
See merge request hubzilla/core!1493
| -rw-r--r-- | install/sample-lighttpd.conf | 2 | ||||
| -rw-r--r-- | install/sample-nginx.conf | 5 |
2 files changed, 6 insertions, 1 deletions
diff --git a/install/sample-lighttpd.conf b/install/sample-lighttpd.conf index db26c3b64..b65d86645 100644 --- a/install/sample-lighttpd.conf +++ b/install/sample-lighttpd.conf @@ -79,7 +79,7 @@ $HTTP["url"] =~ "\.(out|log|htaccess)$" { url.access-deny = ("") } -$HTTP["url"] =~ "(^|/)\.git|(^|/)store" { +$HTTP["url"] =~ "(^|/)\.git|(^|/)store|(^|/)util" { url.access-deny = ("") } diff --git a/install/sample-nginx.conf b/install/sample-nginx.conf index 839f208ae..6a986d426 100644 --- a/install/sample-nginx.conf +++ b/install/sample-nginx.conf @@ -141,5 +141,10 @@ server { deny all; } +#deny access to util + location ~ /util { + deny all; + } + } |