Home > Others

Disable directory execution permission in nginx or Apache

Source: Internet
Author: User
Tags php file php and nginx server
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

The upload Directory of the image files on the website is often set to only upload files but not execute files, that is, the execution permission must be disabled.
This section describes how to configure the nginx Upload directory permission and disable the execution permission.

Nginx disables directory php file execution permission

The following configurations are added to the nginx server.

The code is as follows: Copy code

Location ~ /Attachments/. *. (php | php5 )? $ {
Deny all;
}

Disable the php file execution permission in the attachments Directory

2. Multiple directories

The code is as follows: Copy code

Location ~ /(Attachments | upload)/. *. (php | php5 )? $ {
Deny all;
}

Disable the permission to execute php files in the attachments and upload directories.

The code is as follows: Copy code

Server {
Listen 80;
Server_name xxxx.com;
Index index.html index.htm index. php default.html default.htm default. php;
Root/home/wwwroot/xxxx.com;
 
Include none. conf;
 
# Matching multiple Upload directories
Location ~ ^/(Upload | Upload1)
 {
# The matched file contains at most two. More file location ~ "([.] {2,}) $"
 {
Deny all;
}
# Configure php and php5 suffixes
Location ~ ". (Php | php5) $"
 {
Deny all;
 }
 }
Location ~ . *. (Php | php5 )? $
 {
Try_files $ uri = 404;
Fastcgi_pass unix:/tmp/php-cgi.sock;
Fastcgi_index index. php;
Fcinclude GI. conf;
 }
Location ~ . *. (Gif | jpg | jpeg | png | bmp | swf) $
{
Expires 30d;
}
 
Location ~ . *. (Js | css )? $
 {
Expires 12 h;
 }
 
Access_log off;
 }

After configuration, reload nginx again.

The php execution permission in the dedecms directory is configured as follows:

The code is as follows: Copy code

Location ~ /Mm/(data | uploads | templets)/*. (php) $ {
Deny all;
 }
Location ~ . Php $ {
Try_files $ uri/404.html;
Fastcgi_pass 127.0.0.1: 9000;
Fastcgi_index index. php;
Fastcgi_param SCRIPT_FILENAME $ document_root $ fastcgi_script_name;
Includefagi_params;
 }

1. A single directory

Apache prohibits directory execution of PHP files

Run PHP in Apache mode. You can add the following code to the vhosts configuration file:

The code is as follows: Copy code

<Directory/www/www.fkblog.org/upload>
Php_flag engine off
</Directory>
<Directory ~ "^/Www/. */upload">
<Files ~ ". Php">
Order allow, deny
Deny from all
</Files>
</Directory>

Disable PHP file execution permission in the upload Directory

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
max execution time nginx apache permission how to create directory in linux with full permission apache permission denied apache disable cgi apache disable multiviews ubuntu apache disable site

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More