diff options
| author | pythonsnake <pythonsnake98@gmail.com> | 2013-02-10 14:07:09 +0100 |
|---|---|---|
| committer | Christopher Allan Webber <cwebber@dustycloud.org> | 2013-02-24 16:38:01 -0600 |
| commit | 37b48053e9f2da3a6e2378874b025ab152f6f614 (patch) | |
| tree | 13ecc82c0b74f46b752af8841547d6666ddb008d /docs/source/siteadmin | |
| parent | a5b9a066bf7f18b9707d798990560bf6b52a1a8d (diff) | |
| download | mediagoblin-37b48053e9f2da3a6e2378874b025ab152f6f614.tar.lz mediagoblin-37b48053e9f2da3a6e2378874b025ab152f6f614.tar.xz mediagoblin-37b48053e9f2da3a6e2378874b025ab152f6f614.zip | |
Fix bug 461
Diffstat (limited to 'docs/source/siteadmin')
| -rw-r--r-- | docs/source/siteadmin/deploying.rst | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/docs/source/siteadmin/deploying.rst b/docs/source/siteadmin/deploying.rst index 91406f96..d1300d72 100644 --- a/docs/source/siteadmin/deploying.rst +++ b/docs/source/siteadmin/deploying.rst @@ -282,6 +282,9 @@ this ``nginx.conf`` file should be modeled on the following:: # Change this to update the upload size limit for your users client_max_body_size 8m; + # prevent attacks (someone uploading a .txt file that the browser interprets as an HTML file, etc.) + add_header X-Content-Type-Options nosniff;ยท + server_name mediagoblin.example.org www.mediagoblin.example.org; access_log /var/log/nginx/mediagoblin.example.access.log; error_log /var/log/nginx/mediagoblin.example.error.log; |