k from the wiki should mitigate this risk?
- Grant
>> Does the wiki example mitigate the "Passing Uncontrolled Requests to PHP"
>> risk?
>>
>> location ~ [^/]\.php(/|$) {
>> fastcgi_split_path_info ^(.+?\.php)(/.*)$;
ssing Uncontrolled Requests to PHP"
> risk?
>
> location ~ [^/]\.php(/|$) {
> fastcgi_split_path_info ^(.+?\.php)(/.*)$;
> if (!-f $document_root$fastcgi_script_name) {
> return 404;
> }
>
Does the wiki example mitigate the "Passing Uncontrolled Requests to PHP" risk?
location ~ [^/]\.php(/|$) {
fastcgi_split_path_info ^(.+?\.php)(/.*)$;
if (!-f $document_root$fastcgi_script_name) {
