Sanity check of my config - is it secure?

benseb nginx-forum at
Thu May 26 23:49:41 MSD 2011

I presume in that case, if there was a script and no interpreter, it
would just display the contents of the file - which again could be a
security risk.

So I need to perhaps limit the mime types that can be served, or the
file extensions - which ever is most secure?

I basically don't want a php script in that directory being served and
the source code being visible

Posted at Nginx Forum:,199902,201282#msg-201282

More information about the nginx mailing list