how to forbidden other site stealing my forum attachment ?
Edho Arief
me at myconan.net
Mon Jun 20 05:30:49 UTC 2016
Hi,
On Mon, Jun 20, 2016, at 14:20, 二戒 wrote:
> I think should this line "location ~* ^/bbs/attachment+\.php?$" has
> mistake, but I can't resolve it.
>
> location ~* ^/bbs/attachment+\.php?$
> {
> valid_referers none blocked *.cnprint.org server_names ~\.google\.
> ~\.baidu\. ~\.360\. ~\.bing\.;
> if ($invalid_referer) {
> # return 403;
> rewrite ^.*$ http://www.cnprint.org;
> }
> }
1. There's probably another regexp location block matching the url
before this block is defined (something like `location ~ \.php$ { }`)
and definition order matters in regexp location.
2. You need fastcgi stuff in the block as well otherwise it'll just
return the attachment.php file.
3. The regexp, while does match /bbs/attachment.php fine, it is a bit
confusing since it also matches /bbs/attachmentttttttt.ph .
3.1. might as well use exact match (`location = /bbs/attachment.php {
}`).
More information about the nginx
mailing list