From e262de9b2ddb48d618f45a1b28619b068f76ebac Mon Sep 17 00:00:00 2001
From: Mario Vavti <mario@mariovavti.com>
Date: Sun, 27 Jan 2019 18:05:46 +0100
Subject: update nginx and lighttpd sample server configs to explicit dissalow
 access to util

---
 install/sample-lighttpd.conf | 2 +-
 install/sample-nginx.conf    | 5 +++++
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/install/sample-lighttpd.conf b/install/sample-lighttpd.conf
index db26c3b64..b65d86645 100644
--- a/install/sample-lighttpd.conf
+++ b/install/sample-lighttpd.conf
@@ -79,7 +79,7 @@ $HTTP["url"] =~ "\.(out|log|htaccess)$" {
   url.access-deny = ("")
 }
 
-$HTTP["url"] =~ "(^|/)\.git|(^|/)store" {
+$HTTP["url"] =~ "(^|/)\.git|(^|/)store|(^|/)util" {
   url.access-deny = ("")
 }
 
diff --git a/install/sample-nginx.conf b/install/sample-nginx.conf
index 839f208ae..6a986d426 100644
--- a/install/sample-nginx.conf
+++ b/install/sample-nginx.conf
@@ -141,5 +141,10 @@ server {
         deny  all;
 	}
 
+#deny access to util
+	location ~ /util {
+        deny  all;
+	}
+
 
 }
-- 
cgit v1.2.3