Sanity check of my config - is it secure?
benseb
nginx-forum at nginx.us
Thu May 26 23:49:41 MSD 2011
I presume in that case, if there was a script and no interpreter, it
would just display the contents of the file - which again could be a
security risk.
So I need to perhaps limit the mime types that can be served, or the
file extensions - which ever is most secure?
I basically don't want a php script in that directory being served and
the source code being visible
Posted at Nginx Forum: http://forum.nginx.org/read.php?2,199902,201282#msg-201282
More information about the nginx
mailing list