Update default.conf.sample to deny dotfile access#533
Update default.conf.sample to deny dotfile access#533
Conversation
Signed-off-by: Eric Nemchik <eric@nemchik.com>
|
This pull request has been automatically marked as stale because it has not had recent activity. This might be due to missing feedback from OP. It will be closed if no further activity occurs. Thank you for your contributions. |
|
I am a bot, here are the test results for this PR:
|
Removed duplicate configuration for the '.well-known' directory.
There was a problem hiding this comment.
Pull request overview
This PR updates the Nextcloud container’s default nginx sample config to harden access controls around dotfiles, and records the change in the generated README changelog for users who maintain their own copied nginx config.
Changes:
- Replaced the old
.ht*-specific nginx deny rule with a broader dotfile-matching location block. - Added logging suppression and an explicit 404 response for denied dotfile requests.
- Added a changelog entry in
readme-vars.ymltelling existing users to update their nginx config.
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
root/defaults/nginx/site-confs/default.conf.sample |
Expands the nginx deny rule from .ht* files to dotfiles generally. |
readme-vars.yml |
Adds the corresponding changelog note for existing users. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
|
I am a bot, here are the test results for this PR:
|
Signed-off-by: Eric Nemchik <eric@nemchik.com>
|
I am a bot, here are the test results for this PR:
|
No description provided.