Update default.conf.sample to deny dotfile access#68
Conversation
Signed-off-by: Eric Nemchik <eric@nemchik.com>
|
This pull request has been automatically marked as stale because it has not had recent activity. This might be due to missing feedback from OP. It will be closed if no further activity occurs. Thank you for your contributions. |
|
I am a bot, here are the test results for this PR:
|
Signed-off-by: Eric Nemchik <eric@nemchik.com>
There was a problem hiding this comment.
Pull request overview
Updates the container’s sample Nginx site configuration to block access to hidden “dotfiles” (e.g., .env, .git), while documenting the change in the project changelog variables.
Changes:
- Added a general Nginx rule to deny access to all dotfiles (with an explicit exception for
/.well-known). - Removed the previous narrower deny rule that only blocked
.ht*files. - Added a changelog entry in
readme-vars.ymlindicating existing users should update their Nginx site config.
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.
| File | Description |
|---|---|
| root/defaults/nginx/site-confs/default.conf.sample | Adds dotfile blocking and a /.well-known exception; minor formatting cleanup. |
| readme-vars.yml | Adds a changelog entry advising users to update Nginx config. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| index index.html index.htm index.php; | ||
|
|
||
| # Allow access to the ".well-known" directory | ||
| location ^~ /.well-known { |
| "diskover:latest" <- Base Images | ||
| # changelog | ||
| changelogs: | ||
| - {date: "08.02.26:", desc: "Existing users should update: site-confs/default.conf - Deny access to all dotfiles."} |
|
I am a bot, here are the test results for this PR:
|
|
I am a bot, here are the test results for this PR:
|
No description provided.