Update nginx/sensitive.conf
This commit is contained in:
@@ -1,3 +1,50 @@
|
|||||||
location ~* \.(sql|sql\.gz|sql\.tar|sql\.bzip2|sql\.bz2|sql\.zip|sql\.rar|sql\.7z|bash_history|bashrc|cache|config|cvs|cvsignore|env|env\.backup|env\.bak|env\.development|env\.local|env\.dist|env\.docker\.dev|env\.php|env\.prod|env\.production\.local|env\.sample\.php|env\.save|env\.stage|env\.test|environment|envrc|envs|env~|production\.js|test\.js|dev\.js|test-env\.json|env\.json|forward|jupyter_notebook_config\.json|git|history|hta|htaccess|htpasswd|lanproxy|listing|listings|msmtprc|mysql_history|passwd|pwd|perf|profile|rhosts|sh_history|ssh|subversion|svn|s3cfg|bak|exe|bat|dll|printer|pac|aws|awscfg|aws-key\.yml|config\.yml|secrets\.yml|secrets\.json|credentials|config\.json|deployment-config\.json|docker|cordova|vscode|wpeprivate|composer\.json|composer\.lock|debug\.log)$ {
|
location ~* \.(sql|sql\.gz|sql\.tar|sql\.bzip2|sql\.bz2|sql\.zip|sql\.rar|sql\.7z|bash_history|bashrc|cache|config|cvs|cvsignore|env|env\.backup|env\.bak|env\.development|env\.local|env\.dist|env\.docker\.dev|env\.php|env\.prod|env\.production\.local|env\.sample\.php|env\.save|env\.stage|env\.test|environment|envrc|envs|env~|production\.js|test\.js|dev\.js|test-env\.json|env\.json|forward|jupyter_notebook_config\.json|git|history|hta|htaccess|htpasswd|lanproxy|listing|listings|msmtprc|mysql_history|passwd|pwd|perf|profile|rhosts|sh_history|ssh|subversion|svn|s3cfg|bak|exe|bat|dll|printer|pac|aws|awscfg|aws-key\.yml|config\.yml|secrets\.yml|secrets\.json|credentials|config\.json|deployment-config\.json|docker|cordova|vscode|wpeprivate|composer\.json|composer\.lock|debug\.log)$ {
|
||||||
deny all;
|
deny all;
|
||||||
}
|
}
|
||||||
|
location ~ /\. {
|
||||||
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
location ~ ~$ {
|
||||||
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
location ~ \.bak$ {
|
||||||
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
location ~ \.gz$ {
|
||||||
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
location ~ \.tar$ {
|
||||||
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
location ~ \.zip$ {
|
||||||
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
location ~ /dump.sql$ {
|
||||||
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
location ^~ /.well-known {
|
||||||
|
allow all;
|
||||||
|
}
|
||||||
Reference in New Issue
Block a user