11 lines
346 B
Plaintext
11 lines
346 B
Plaintext
# Prevent clients from accessing hidden files (starting with a dot)
|
|
# This is particularly important if you store .htpasswd files in the site hierarchy
|
|
location ~* (?:^|/)\. {
|
|
deny all;
|
|
}
|
|
|
|
# Prevent clients from accessing to backup/config/source files
|
|
location ~* (?:\.(?:bak|config|sql|fla|psd|ini|log|sh|inc|swp|dist)|~)$ {
|
|
deny all;
|
|
}
|