Questions tagged [deny]

72 questions
51
votes
4 answers

how to restrict access to directory and subdirs

I need to restrict access to any files or subdirs in direstory "testdir". My conf: ... location ~* ^.+\.(jpg|txt)$ { root /var/www/site; } location /testdir { deny all; return 404; } ... In my…
tst
14
votes
5 answers

Deny IP address on AWS ELB

I've, more or less, following configuration on AWS: Elastic load balancer with 3 machines o 3 different availability zones. My security group allows 0.0.0.0/0:80 as it's my rails application (nginx, unicorn). I was wondering if there's any way to…
boris quiroz
  • 1,140
  • 1
  • 7
  • 18
10
votes
3 answers

What does the apache Satisfy directive do?

I stumbled upon a httpd.conf directive that I can't manage to understand: Order allow,deny Deny from all Satisfy All According to the doc , I would say that Satisfy doesn't have any effect since there is no Allow.…
user41565
  • 203
  • 1
  • 3
  • 6
9
votes
1 answer

How to block IP addresses in HAProxy?

Is there something like Apache "deny from ip" in haproxy?
Marcin
  • 603
  • 4
  • 8
  • 15
6
votes
3 answers

nginx deny ip - access forbidden by rule in error log

We having blocked some bad bots which relentlessly try to access our site via "Deny" directives in NGINX. It's not possible for us to block it at the firewall, as we use a load balancer that we have no access to from our cloud provider. This…
6
votes
4 answers

Apache2: How do I restrict access to a directory, but allow access to one file within it?

I've inherited a poorly designed web app, which has a certain file that needs to be publicly accessible, but that file is inside a directory which should not. In other words, I need a way to block all files and sub-directories within a directory,…
Nick
  • 4,433
  • 29
  • 67
  • 95
5
votes
2 answers

Blocking a network device from communicating with another device on the LAN

I have been working with the firewall/router distribution Pfsense for a while now and I have been trying to figure out how to "isolate" a server on my LAN from other computers on my LAN by using deny/reject LAN rules. I have tried adding a rule…
user99545
  • 253
  • 1
  • 4
  • 6
5
votes
2 answers

Denying folder in Nginx causing PHP-FPM to not take precedence

The title says it all, but I have a very interesting problem that I am quite confused on. Basically, I have a simple WordPress installation, and I wish to deny a folder (along with all files in the folder), let's say…
Taylor Jasko
  • 686
  • 4
  • 13
5
votes
4 answers

Apache on Localhost to block incoming connections outside localhost

How can I make it that my local Apache installation works only as http://localhost/ and never from outside like using the IP of my machine when connected to a network please?
Francisc
  • 143
  • 1
  • 3
  • 11
4
votes
5 answers

NTFS: Deny all permissions for all files, except where explicitly added

I'm running a sandboxed application as a local user. I now want to deny almost all file system permissions for this user to secure the system, except for a few working folders and some system DLLs (I'll call this set of files & directories X…
Simon
  • 151
  • 1
  • 5
4
votes
2 answers

NGINX deny IP wildcard?

I currently deny IP addresses like this in the nginx.conf file: deny 42.22.11.531; But how would I deny deny 42.22.*.*; <---- this obviously doesnt work, what is the correct syntax for nginx? Ive seen: deny 42.22.11.0/24 <---- not sure what this…
Dennis
  • 41
  • 1
  • 1
  • 2
3
votes
1 answer

Hashicorp Vault - Policy restricting one specific sub node in a path

I have a Hashicorp Vault server configured and everything is running great, except for my "deny" policies. I have a 2 level grouping for the majority of secrets, so they follow the structure of: secret/client/environment/* Not all secrets follow…
PhilHalf
  • 71
  • 1
  • 6
3
votes
1 answer

NginX - allow - custom error page

This is rather interesting Guys! I have the following code in one of my webapplications NginX configuration: location /login { #access_log off; proxy_pass https://public; proxy_set_header X-Real-IP…
Bert
  • 984
  • 1
  • 11
  • 29
3
votes
1 answer

htaccess deny form all wp-login.php blocks "most" adresses but not all

One of my sites has been hacked recently. To make it short, i had an old version of wisiya newsletters running wich was used to upload a few files in the wp-content directory. Since then a lot of things has changed regarding the security of this…
3
votes
3 answers

nginx not blocking user agents

I have this in my .conf file for my website in attempt to block 2 user agents from constantly probing my server. ## Block http user agent - morpheus fucking scanner ## if ($http_user_agent ~* "morfeus fucking scanner|ZmEu") { return 403; } Ive…
ProfessionalAmateur
  • 917
  • 5
  • 17
  • 26
1
2 3 4 5