SystemSh0cker/gocsaf
1
0
Fork 0
mirror of https://github.com/gocsaf/csaf.git synced 2025-12-22 05:40:11 +01:00
Code Issues Releases Activity Actions

Improve nginx setup docs (#182)

Browse source 
* Change nginx config to return 403 on unauthorized access to
   the non-white TLP locations. We cannot hide the existence anyway,
   as it is listed in the provider-metadata.json, even when restricted.
This commit is contained in:
Bernhard E. Reiter 2022-06-14 13:19:30 +02:00 committed by GitHub
parent 2961a70bf2
commit 1e9d31277d
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 2 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

4
docs/scripts/TLSClientConfigsForITest.sh
View file

@ -33,9 +33,7 @@ echo '
autoindex on;
# in this location access is only allowed with client certs
if ($ssl_client_verify != SUCCESS){
# we use status code 404 == "Not Found", because we do
# not want to reveal if files within this location exist or not.
return 404;
return 403;
}
}
'> ~/${FOLDERNAME}/clientCertificateConfigs.txt