SECURITY: prevent direct download of backups

2014-12-03 12:47:28 +01:00 · 2014-12-03 12:47:28 +01:00 · 0138ecc99a
commit 0138ecc99a
parent 89f5ea02f6
1 changed files with 5 additions and 0 deletions
--- a/config/nginx.sample.conf
+++ b/config/nginx.sample.conf
@ -58,6 +58,11 @@ server {
  # further more etags are based on the file in nginx not sha of data
  # use dates, it solves the problem fine even cross server
  etag off;
+  
+  # prevent direct download of backups
+  location ^~ /backups/ {
+    internal;
+  }

  location / {
    root $public;