server-configs-nginx/h5bp/location/protect-system-files.conf

# Prevent clients from accessing hidden files (starting with a dot)
# This is particularly important if you store .htpasswd files in the site hierarchy
location ~* (?:^|/)\. {
    deny all;
}

# Prevent clients from accessing to backup/config/source files
location ~* (?:\.(?:bak|config|sql|fla|psd|ini|log|sh|inc|swp|dist)|~)$ {
    deny all;
}
split the default server config Make it possible to pick and mix server rules. 2012-07-22 23:31:54 +02:00			`# Prevent clients from accessing hidden files (starting with a dot)`
protect-system-files.conf: clarify why people should be using it 2013-02-24 22:16:13 +01:00			`# This is particularly important if you store .htpasswd files in the site hierarchy`
nginx: change regex patterns to non-capturing for speedup 2013-02-24 21:40:13 +01:00			`location ~* (?:^\|/)\. {`
protect-system-files.conf: use "deny all" for clearer intent when blocking access 2013-02-24 21:41:51 +01:00			`deny all;`
split the default server config Make it possible to pick and mix server rules. 2012-07-22 23:31:54 +02:00			`}`

			`# Prevent clients from accessing to backup/config/source files`
nginx: change regex patterns to non-capturing for speedup 2013-02-24 21:40:13 +01:00			`location ~* (?:\.(?:bak\|config\|sql\|fla\|psd\|ini\|log\|sh\|inc\|swp\|dist)\|~)$ {`
protect-system-files.conf: use "deny all" for clearer intent when blocking access 2013-02-24 21:41:51 +01:00			`deny all;`
split the default server config Make it possible to pick and mix server rules. 2012-07-22 23:31:54 +02:00			`}`