YunoHost-Apps/hubzilla_ynh
1
0
Fork 0
mirror of https://github.com/YunoHost-Apps/hubzilla_ynh.git synced 2024-09-03 19:26:21 +02:00
Code Issues Activity Actions

Futher fixed [Nginx] HTTP-Splitting vulnerability

Browse source
This commit is contained in:
anmol26s 2018-05-05 13:31:19 +05:30
parent f8d432a35c
commit b4b83eca41
1 changed files with 7 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
conf/nginx.conf
View file

@ -31,17 +31,19 @@
# by denying dot files and rewrite request to the front controller # by denying dot files and rewrite request to the front controller
location ^~ /.well-known/ { location ^~ /.well-known/ {
allow all; allow all;
rewrite ^/(.*) /index.php?q=$uri&$args last; if (!-e $request_filename) {
rewrite ^(.*)$ /index.php?q=$1;
}
} }
# statically serve these file types when possible # statically serve these file types when possible
# otherwise fall back to front controller # otherwise fall back to front controller
# allow browser to cache them # allow browser to cache them
# added .htm for advanced source code editor library # added .htm for advanced source code editor library
location ~* \.(jpg|jpeg|gif|png|ico|css|js|htm|html|map|ttf|woff|woff2|svg)$ { #location ~* \.(jpg|jpeg|gif|png|ico|css|js|htm|html|map|ttf|woff|woff2|svg)$ {
expires 30d; # expires 30d;
try_files $uri /index.php?q=$uri&$args; # try_files $uri /index.php?q=$uri&$args;
} # }
# block these file types # block these file types
location ~* \.(tpl|md|tgz|log|out)$ { location ~* \.(tpl|md|tgz|log|out)$ {