blob: 930049eb9ba4b65a581314fcc80ada0791666c9e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
% Securing Cache Directories
While nothing critical is stored in cache directories by tt-rss nor do files have easily guessable names, you may consider forbidding external access over HTTP to these directories anyway. This is not required, however.
You may also consider restricting access to <code>config.php</code>, just in case.
## Using nginx
```nginx
location /tt-rss/cache {
deny all;
}
location = /tt-rss/config.php {
deny all;
}
```
## Using apache (2.4 syntax)
```apache
<Directory /var/www/html/tt-rss/cache>
Require all denied
</Directory>
<Directory /var/www/html/tt-rss>
<Files "config.php">
Require all denied
</Files>
</Directory>
```
|
