5

Match files which are not in a specific directory

view full story
linux-howto

http://serverfault.com – I have the following rule in my nginx config: location ~* .(js|css|png|jpg|jpeg|gif|ico|xml|swf|flv|eot|ttf|woff|pdf|xls|htc)$ { which matches some images and other resources. However I want to prevent it to match resources which are in a specific directory uploads. How would I change the above rule to prevent matching files in the uploads directory (like /uploads/something.jpg), but still match file like /anything/whatever.jpg or just whatever.jpg? (HowTos)

taskli's picture
Submitted by taskli on 12/28/2012 – Made popular on 12/28/2012

Stories similar to Match files which are not in a specific directory

I'm wondering if it's possible to match Wordpress directory and specific file in the same location, so at the moment I've got rule to match only the wp-admin directory:

## Restricted Access directory location ^~ /wp-admin/ { auth_basic "Access Denied!"; auth_basic_user_file .users;

location ~ \.php$ { fastcgi_pass unix:/var/run/php-fpm/www.sock; fastcg

For example, if I want to split my prevent hotlink block from caching definition block, and put them in seperate .conf file to be included latter by main.conf, will nginx only match the first one?

location ~* \.(?:jpg|jpeg|gif|png|ico)$ {

valid_referers none blocked somedomain.com; if ($invalid_referer) { return 403; }

}

...

location ~* \.(?:jpg|jpeg|gif|pn

In Zsh: Is there a way to use ls to only list files and folders in the current directory that match a specific globbing or regex pattern?

For example, say I have multiple files that start with the character #, the following command does not do what I want:

ls -l #*

I know I can do this with find, i.e. find .

I've setup Wordpress on our server. We're trying to upload some documentation files. But SELinux pops-up and says that

SELinux is preventing /usr/sbin/php-fpm from write access on the directory /opt/nginx/html/wp/wp-content/uploads.

All the file permission are correct. Is there something to be done to allow php-fpm allow write access to that directory.

How to configure the simplest useful default-deny rule set for mod_security?

I want to configure mod_security to allow only very specific queries to single directory:

In short: I use Apache as a reverse proxy for directory /web_app/, in this directory will be a single php file named get.php.

What is the correct way to set up directories to allow user uploads on Linux? My websites upload dir is 755, but Linux naturally doesn't let files be written to this directory except by the user. So should I change the directory to 777 or do some kind of group manipulation? Bare in mind, I don't want to open myself up to any security risks.

I always gave to the webserver user full permissions on these dirs:

cache/ logs/ web/uploads/

But now I am wondering if the uploads part is 0K. I was thinking that maybe it would be better if I use a .tmp file for each upload, and then put them in a queue to be moved to uploads/, and do the same for deletions (the queue will be read and validated by a different user).

I have an internal application sitting behind a firewall that has to FTP some files to uploads.google.com. I asked our network/sys admin to create a rule to allow it and they did, based on the IP of uploads.google.com.

However, Google change their IP address for this name from time to time and when they do, obviously the rule stops working.

Hi all, I am trying to install VMware on my machine. I have downloaded VMware and I am now trying to configure it. After accepting the EULA, the program states; Code: None of the pre-built vmmon modules for VMware Server is suitable for your running kernel.  Do you want this program to try to build the vmmon module for