Ensiferous Wrote: ------------------------------------------------------- > Please elaborate on how allowing a filename like > .dsadsada/sad.php is insecure. Here is better explaintation of the issue : http://forum.nginx.org/read.php?15,192150,192150 Posted at Nginx Forum: http://forum.nginx.org/read.php?2,204051,204068#msg-204068