paxton
/
mailcow
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

[SOGo, Nginx] Deny access to some extensions from SOGo web ui to mitigate security concerns

master
andryyy 2021-05-12 10:44:42 +02:00
parent 08e9ab18a8
commit 6a8aa699d9
No known key found for this signature in database
GPG Key ID: 8EC34FF2794E25EF
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
data/conf/nginx/includes/site-defaults.conf
View File

@ -176,6 +176,10 @@
}
location ^~ /SOGo {
location ~* ^/SOGo/so/.*\.(xml|js|html|xhtml)$ {
return 403;
break;
}
include /etc/nginx/conf.d/sogo_proxy_auth.active;
include /etc/nginx/conf.d/sogo.active;
proxy_set_header X-Real-IP $remote_addr;