nginx 0day exploit for nginx + fastcgi PHP

tuurtnt nginx-forum at nginx.us
Wed Dec 14 23:26:34 UTC 2011

Previous message: proxy_ignore_headers doesn't seem to work
Next message: Trouble with somewhat complex proxy config
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi guys,

just found this fix for this issue...


if ( $fastcgi_script_name ~ \..*\/.*php ) { 
return 403; 
}

Posted at Nginx Forum: http://forum.nginx.org/read.php?2,88845,220088#msg-220088

Previous message: proxy_ignore_headers doesn't seem to work
Next message: Trouble with somewhat complex proxy config
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the nginx mailing list