Mod access » History » Revision 27
« Previous |
Revision 27/28
(diff)
| Next »
gstrauss, 2021-03-18 17:13
Module mod_access¶
- Table of contents
- Module mod_access
Description¶
The access module is used to deny access to files.
Options¶
url.access-allow
Allow access only to files with any of given trailing path names. (since 1.4.40)
Default value:empty
url.access-deny
Denies access to all files with any of given trailing path names.
Default value:empty
Usage examples¶
url.access-allow
url.access-allow = ( ".jpg", ".gif")
You might want to deny access to all files ending with a tilde (~) or .inc because of:
- Text editors often use a trailing tilde for backup files.
- And the .inc extension is often used for include files with code.
url.access-deny
url.access-deny = ( "~", ".inc")
Directory deny access
An empty string in url.access-deny
matches all requests
$HTTP["url"] =~ "^/libraries" { url.access-deny = ("") }
Note: Creating a very, very large list of conditions is inefficient. If creating conditions from a list, consider batching them with regex alternations into many fewer conditions, each with a large regex. See #3074
Deny bots if User-Agent matches robots.txt
Sample one-liner to generate config:curl -s https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/robots.txt/robots.txt | perl -e 'while (<>) { /User-agent:\s*(.+)/ && push @x, quotemeta($1); } print "\$HTTP[\"user-agent\"] =~ \"\\b(?i:", join("|",@x), ")\\b\" { url.access-deny = (\"\") }\n"'
Updated by gstrauss almost 4 years ago · 27 revisions