server-configs-nginx/nginx/conf/protect-system-files.conf

# Prevent clients from accessing hidden files (starting with a dot)
location ~* (^|/)\. {
    return 403;
}

# Prevent clients from accessing to backup/config/source files
location ~* (\.(bak|config|sql|fla|psd|ini|log|sh|inc|swp|dist)|~)$ {
    return 403;
}
split the default server config Make it possible to pick and mix server rules. 2012-07-22 23:31:54 +02:00			`# Prevent clients from accessing hidden files (starting with a dot)`
			`location ~* (^\|/)\. {`
			`return 403;`
			`}`

			`# Prevent clients from accessing to backup/config/source files`
			`location ~* (\.(bak\|config\|sql\|fla\|psd\|ini\|log\|sh\|inc\|swp\|dist)\|~)$ {`
			`return 403;`
			`}`