generated from nhcarrigan/template
feat: block dotfile requests across all sites
Adds a deny-dotfiles snippet that returns 403 for any URI matching /\. (e.g. .gitconfig, .env, .git/) and includes it in every server block.
This commit is contained in:
@@ -10,4 +10,5 @@ server {
|
||||
proxy_pass http://127.0.0.1:12321;
|
||||
proxy_redirect off;
|
||||
}
|
||||
include /etc/nginx/snippets/deny-dotfiles.conf;
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user