access error?
AMP Admin
admin at ampprod.com
Thu Apr 23 08:32:39 MSD 2009
It's only looking at the directory but not the files. Notice the .* in the
following example and the php handling.
Example:
## Protect
location ~ /(directory1/| directory2/| directory3).* {
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
include fastcgi_params;
allow 1.1.1.1;
allow 2.2.2.2;
deny all;
}
From: owner-nginx at sysoev.ru [mailto:owner-nginx at sysoev.ru] On Behalf Of Glen
Lumanau
Sent: Wednesday, April 22, 2009 11:03 PM
To: nginx at sysoev.ru
Subject: access error?
location /administrator/ {
allow 1.1.1.1;
allow 2.2.2.2;
deny all;
I tried to use that configuration. If someone accessing
www.domain.com/administrator/ it's forbidden.
But if someone accessing www.domain.com/administrator/index.php they can
execute it
Is there somethink I've missed?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://nginx.org/pipermail/nginx/attachments/20090422/e771ef3e/attachment.html>
More information about the nginx
mailing list