Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
iancarroll
on Feb 23, 2022
|
parent
|
context
|
favorite
| on:
Avoiding the top Nginx configuration mistakes
Not a comprehensive article, but the worst security footgun, by far (IMO), is $uri. It’s completely unsafe to use $uri in basically any directives! You cannot redirect using it, proxy_pass using it, or you will have a bad time.
https://reversebrain.github.io/2021/03/29/The-story-of-Nginx...
cosmiccrisp
on Feb 23, 2022
[–]
Thanks! That is good info.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
https://reversebrain.github.io/2021/03/29/The-story-of-Nginx...