From e3e3b4da58d4b08f98d4e638864d12a6321a1ad0 Mon Sep 17 00:00:00 2001 From: Celly Date: Thu, 21 Sep 2017 17:47:37 -0400 Subject: Add in some exclusions form some leaky files in the admin --- advanced/lighttpd.conf.debian | 7 ++++++- advanced/lighttpd.conf.fedora | 7 ++++++- 2 files changed, 12 insertions(+), 2 deletions(-) (limited to 'advanced') diff --git a/advanced/lighttpd.conf.debian b/advanced/lighttpd.conf.debian index 47f6af02..10085dd8 100644 --- a/advanced/lighttpd.conf.debian +++ b/advanced/lighttpd.conf.debian @@ -41,7 +41,7 @@ accesslog.format = "%{%s}t|%V|%r|%s|%b" index-file.names = ( "index.php", "index.html", "index.lighttpd.html" ) -url.access-deny = ( "~", ".inc" ) +url.access-deny = ( "~", ".inc", ".md", ".yml", ".ini" ) static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" ) compress.cache-dir = "/var/cache/lighttpd/compress/" @@ -66,5 +66,10 @@ $HTTP["url"] =~ "^/admin/" { } } +# Block the github files from being accessible. +$HTTP["url"] =~ "^/admin/(.git|.gitignore|.github)" { + url.access-deny = ("") +} + # Add user chosen options held in external file include_shell "cat external.conf 2>/dev/null" diff --git a/advanced/lighttpd.conf.fedora b/advanced/lighttpd.conf.fedora index 773f0142..27a854af 100644 --- a/advanced/lighttpd.conf.fedora +++ b/advanced/lighttpd.conf.fedora @@ -42,7 +42,7 @@ accesslog.format = "%{%s}t|%V|%r|%s|%b" index-file.names = ( "index.php", "index.html", "index.lighttpd.html" ) -url.access-deny = ( "~", ".inc" ) +url.access-deny = ( "~", ".inc", ".md", ".yml", ".ini" ) static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" ) compress.cache-dir = "/var/cache/lighttpd/compress/" @@ -85,5 +85,10 @@ $HTTP["url"] =~ "^/admin/" { } } +# Block the github files from being accessible. +$HTTP["url"] =~ "^/admin/(.git|.gitignore|.github)" { + url.access-deny = ("") +} + # Add user chosen options held in external file include_shell "cat external.conf 2>/dev/null" -- cgit v1.2.3