Translations:General FAQ/139/en
From LimeSurvey Manual
- Allow access to well-known directory, different usage, for example ACME Challenge for Let's Encrypt
location ~ /\.well-known { allow all; } # Deny all attempts to access hidden files # such as .htaccess, .htpasswd, .DS_Store (Mac). location ~ /\. { deny all; } #Disallow direct read user upload files location ~ ^/upload/surveys/.*/fu_[a-z0-9]*$ { return 444; } #Disallow uploaded potential executable files in upload directory location ~* /upload/.*\.(pl|cgi|py|pyc|pyo|phtml|sh|lua|php|php3|php4|php5|php6|pcgi|pcgi3|pcgi4|pcgi5|pcgi6|icn)$ { return 444; } #avoid processing of calls to unexisting static files by yii location ~ \.(js|css|png|jpg|gif|swf|ico|pdf|mov|fla|zip|rar)$ { try_files $uri =404; } location ~ \.php$ { fastcgi_split_path_info ^(.+\.php)(.*)$; try_files $uri index.php; fastcgi_pass 127.0.0.1:9000; # Change this to match your settings fastcgi_index index.php; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_param SCRIPT_NAME $fastcgi_script_name; }
}</syntaxhighlight>