Nginx - block all *.php files except index
Question
I'm new to nginx. I need to block all .php files for security reasons. Any simple way to do it simmilar to Apache's .htaccess, as below:
RewriteCond %{REQUEST_FILENAME} -f
RewriteCond %{REQUEST_FILENAME} \.php$
RewriteRule !^index.php index.php [L,NC]
Thanks in advance!
1 answers
solution1
0 ACCPTED 2020-11-18 18:23:33
Instead of usual nginx PHP handler location
location ~ \.php$ {
... # FastCGI PHP handler here
}
use something like
location ~ \.php$ {
rewrite ^ /index.php last;
}
location = /index.php {
... # FastCGI PHP handler here
}
Although regex matching locations ( location ~ <regex> { ... } ) are taking priority over the prefix locations ( location <URI prefix> { ... } ) on the request URI match, exact matching location ( location = <URI> { ... } ) are taking priority over both of them.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Nginx runs all php files, except index.php
Deny direct access to all .php files except index.php
.htaccess deny php files from all except index
Apache redirect all to index.php except for existing files and folders
nginx serves 404 for all php files but index.php
Nginx block access to php files
How to block access to all .php except index.php in root folder (via .htaccess)?
On AWS EC2 Linux RHEL all PHP files are executing, except for index.php
Deny all files except the index using apache
php - htaccess block php files except root files
Related Tags