• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion
  • Inviting everyone to the UX test of a new security feature in the WP Toolkit
    For WordPress site owners, threats posed by hackers are ever-present. Because of this, we are developing a new security feature for the WP Toolkit. If the topic of WordPress website security is relevant to you, we would be grateful if you could share your experience and help us test the usability of this feature. We invite you to join us for a 1-hour online session via Google Meet. Select a convenient meeting time with our friendly UX staff here.

Issue nginxDomainVirtualHost.php wrongly denies access to .ht*

TimReeves

TimReeves

Regular Pleskian
<?php if (!$VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
location ~ /\.ht {
deny all;
}
<?php endif ?>

So it's saying: If Nginx proxy mode is NOT selected, deny access to .ht* - but in non-proxy mode, .ht* has no special meaning, as nothing is passed to Apache.

I think the test should be the other way around: Deny access to .ht* IF Nginx is proxying to Apache.

For me, this statement torpedoes Nextcloud trying to sync .ht* files stored on my PC for other projects )-:

Cheers, Tim
 
You must log in or register to reply here.

Similar threads

D
Input How to run Magento 2 on Plesk Obsidian 18 without Docker
Replies
6
Views
3K
WebHostingAce
WebHostingAce
T
Issue Host settings and htaccess behavior in nginx proxy mode
Replies
3
Views
2K
Peter Debik
P
O
Issue .htaccess Expires Headers not working at all
Replies
3
Views
2K
MartinT
M
R
Question Missing Authorization Headers in FPM application served by Nginx
Replies
2
Views
5K
Kaspar
K
B
Forwarded to devs following support article to protect folder by IP, it does not allow access (always 403) and worse, PHPs get downloaded, not executed
Replies
2
Views
2K
briveira
B
Back
Top