From d8da6da9dce6c76b9d1c3826f93ede85bb6908a8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9r=C3=B4me=20Lebleu?= <jerome.lebleu@mailoo.org>
Date: Thu, 11 Dec 2014 23:41:05 +0100
Subject: [PATCH] [fix] Deny access to /lib/*.php

---
 conf/nginx.conf | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/conf/nginx.conf b/conf/nginx.conf
index e988784..f7731b6 100644
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@@ -6,6 +6,9 @@ location YNH_WWW_PATH {
   client_max_body_size 10G;
   index index.php;
   try_files $uri $uri/ index.php;
+  location ~ ^YNH_WWW_PATH/lib/.*\.php {
+    deny all;
+  }
   location ~ [^/]\.php(/|$) {
     fastcgi_split_path_info ^(.+?\.php)(/.*)$;
     fastcgi_pass unix:/var/run/php5-fpm-jirafeau.sock;