Sanity check of my config - is it secure?

benseb nginx-forum at
Fri May 27 00:10:23 MSD 2011

Thanks people

So there's no way to say "If the file ISNT a jpeg/gif/css/js" deny. The
only way is to say 'if .php' deny, 'if .txt deny' etc?

I'd prefer to whitelist the files i DO want to return and block
everything else, incase I forget something to block?


Posted at Nginx Forum:,199902,201289#msg-201289

More information about the nginx mailing list