Questions tagged [deny]
72 questions
51
votes
4 answers
how to restrict access to directory and subdirs
I need to restrict access to any files or subdirs in direstory "testdir". My conf:
...
location ~* ^.+\.(jpg|txt)$ {
root /var/www/site;
}
location /testdir {
deny all;
return 404;
}
...
In my…
tst
14
votes
5 answers
Deny IP address on AWS ELB
I've, more or less, following configuration on AWS:
Elastic load balancer with 3 machines o 3 different availability zones. My security group allows 0.0.0.0/0:80 as it's my rails application (nginx, unicorn).
I was wondering if there's any way to…
boris quiroz
- 1,140
- 1
- 7
- 18
10
votes
3 answers
What does the apache Satisfy directive do?
I stumbled upon a httpd.conf directive that I can't manage to understand:
Order allow,deny
Deny from all
Satisfy All
According to the doc , I would say that Satisfy doesn't have any effect since there is no Allow.…
user41565
- 203
- 1
- 3
- 6
9
votes
1 answer
How to block IP addresses in HAProxy?
Is there something like Apache "deny from ip" in haproxy?
Marcin
- 603
- 4
- 8
- 15
6
votes
3 answers
nginx deny ip - access forbidden by rule in error log
We having blocked some bad bots which relentlessly try to access our site via "Deny" directives in NGINX. It's not possible for us to block it at the firewall, as we use a load balancer that we have no access to from our cloud provider.
This…
Scott Johnston
- 61
- 1
- 2
6
votes
4 answers
Apache2: How do I restrict access to a directory, but allow access to one file within it?
I've inherited a poorly designed web app, which has a certain file that needs to be publicly accessible, but that file is inside a directory which should not.
In other words, I need a way to block all files and sub-directories within a directory,…
Nick
- 4,433
- 29
- 67
- 95
5
votes
2 answers
Blocking a network device from communicating with another device on the LAN
I have been working with the firewall/router distribution Pfsense for a while now and I have been trying to figure out how to "isolate" a server on my LAN from other computers on my LAN by using deny/reject LAN rules. I have tried adding a rule…
user99545
- 253
- 1
- 4
- 6
5
votes
2 answers
Denying folder in Nginx causing PHP-FPM to not take precedence
The title says it all, but I have a very interesting problem that I am quite confused on. Basically, I have a simple WordPress installation, and I wish to deny a folder (along with all files in the folder), let's say…
Taylor Jasko
- 686
- 4
- 13
5
votes
4 answers
Apache on Localhost to block incoming connections outside localhost
How can I make it that my local Apache installation works only as http://localhost/ and never from outside like using the IP of my machine when connected to a network please?
Francisc
- 143
- 1
- 3
- 11
4
votes
5 answers
NTFS: Deny all permissions for all files, except where explicitly added
I'm running a sandboxed application as a local user. I now want to deny almost all file system permissions for this user to secure the system, except for a few working folders and some system DLLs (I'll call this set of files & directories X…
Simon
- 151
- 1
- 5
4
votes
2 answers
NGINX deny IP wildcard?
I currently deny IP addresses like this in the nginx.conf file:
deny 42.22.11.531;
But how would I deny
deny 42.22.*.*; <---- this obviously doesnt work, what is the correct syntax for nginx?
Ive seen:
deny 42.22.11.0/24 <---- not sure what this…
Dennis
- 41
- 1
- 1
- 2
3
votes
1 answer
Hashicorp Vault - Policy restricting one specific sub node in a path
I have a Hashicorp Vault server configured and everything is running great, except for my "deny" policies.
I have a 2 level grouping for the majority of secrets, so they follow the structure of:
secret/client/environment/*
Not all secrets follow…
PhilHalf
- 71
- 1
- 6
3
votes
1 answer
NginX - allow - custom error page
This is rather interesting Guys! I have the following code in one of my webapplications NginX configuration:
location /login {
#access_log off;
proxy_pass https://public;
proxy_set_header X-Real-IP…
Bert
- 984
- 1
- 11
- 29
3
votes
1 answer
htaccess deny form all wp-login.php blocks "most" adresses but not all
One of my sites has been hacked recently. To make it short, i had an old version of wisiya newsletters running wich was used to upload a few files in the wp-content directory. Since then a lot of things has changed regarding the security of this…
Michael Uszleit
- 31
- 2
3
votes
3 answers
nginx not blocking user agents
I have this in my .conf file for my website in attempt to block 2 user agents from constantly probing my server.
## Block http user agent - morpheus fucking scanner ##
if ($http_user_agent ~* "morfeus fucking scanner|ZmEu") {
return 403;
}
Ive…
ProfessionalAmateur
- 917
- 5
- 17
- 26