Nginx with php configuration how to block all requests/urls other than two?

c0nw0nk nginx-forum at nginx.us
Fri Jan 30 07:51:50 UTC 2015


Thanks for the help guys i have it working but i am not sure what config i
should be using out of these two what one would be better.

itpp2012's config :

map $request $allowonly {
default 1;
~*addmedia\.upload([a-zA-Z0-9-_=&]) 0;
}
server {
listen	80;
listen	[::]:80;
server_name  sub1.domain.com;
index index.php index.html index.htm default.html default.htm;
location / {
return 404;
}
location /media/com_hwdmediashare/assets/swf/Swiff.Uploader.swf {
root   z:/public_www;
expires max;
}
location ~ \.php$ {
if ($allowonly) {
return 403;
}
try_files $uri =404;
##fastcgi stuff here
}
}


And then the config Francis recommends :

server {
listen	80;
listen	[::]:80;
server_name sub1.domain.com;
location / {
return 404;
}
location = /index.php {
if ( $args !~ 'option=com_hwdmediashare&task=addmedia.upload' ) {
return 404;
}
try_files $uri =404;
# do whatever (So fastcgi stuff here)
}
location = /media/com_hwdmediashare/assets/swf/Swiff.Uploader.swf {
root   z:/public_www;
expires max;
}
}

itp2012's config is the one i am currently using and works well should i
change anything or just stick with it :) ?

Posted at Nginx Forum: http://forum.nginx.org/read.php?2,256336,256354#msg-256354



More information about the nginx mailing list