SECURITY: prevent direct download of backups

2014-12-03 12:47:28 +01:00 · 2014-12-03 12:47:28 +01:00 · acc62f2ec2
parent 8ab32396a7
commit acc62f2ec2
1 changed files with 5 additions and 0 deletions
--- a/config/nginx.sample.conf
+++ b/config/nginx.sample.conf
@ -59,6 +59,11 @@ server {
  # use dates, it solves the problem fine even cross server
  etag off;
  
+  # prevent direct download of backups
+  location ^~ /backups/ {
+    internal;
+  }
+
  location / {
    root $public;
    add_header ETag "";