During server configuration, you often need to configure permissions for the specified directory. For example, uploading a directory is an insecure Directory. We need to disable the permission to execute php scripts, nginx and apache prohibit the permission to execute php files in directories as follows:
Nginx disables directory php file execution permission
The following configurations are added to the nginx server.
| The code is as follows: |
Copy code |
Location ~ /Attachments/. *. (php | php5 )? $ { Deny all; } |
Disable the php file execution permission in the attachments Directory
2. Multiple directories
| The code is as follows: |
Copy code |
Location ~ /(Attachments | upload)/. *. (php | php5 )? $ { Deny all; } |
Disable the permission to execute php files in the attachments and upload directories.
After configuration, reload nginx again.
1. A single directory
Apache prohibits directory execution of PHP files
Run PHP in Apache mode. You can add the following code to the vhosts configuration file:
| The code is as follows: |
Copy code |
<Directory/www./upload> Php_flag engine off </Directory> <Directory ~ "^/Www/. */upload"> <Files ~ ". Php"> Order allow, deny Deny from all </Files> </Directory> |
Disable PHP file execution permission in the upload Directory
Note: the method for setting directory permissions in nginx is different from that in apache + windows. You can go to the php Tutorial channel on this site.