nginx mitigations

2025-06-25 15:09:37 +00:00
parent daf86e71f3
commit 0ce06e6099
1 changed files with 20 additions and 0 deletions
--- a/nginx.conf
+++ b/nginx.conf
@ -0,0 +1,20 @@
+location ~ ^/(wp-cron\.php|wp-config\.php|install\.php|xmlrpc\.php|config\.php|configuration\.php|\.env|\.git/|\.svn/|\.log$) {
+    # deny all;
+    # return 404;
+    rewrite ^(.*)$ /error-404/ redirect;
+}
+
+location ~ (LICENSE|\.md$|license\.txt|\.htaccess|readme\.html|readme\.txt) {
+    log_not_found off;
+    access_log off;
+    rewrite ^(.*)$ /error-404/ redirect;
+}
+
+location ~* ^/wp-json/wp/v2/users(/.*)?$ {
+    rewrite ^(.*)$ /error-404/ redirect;
+}
+
+location = /favicon.ico {
+    log_not_found off;
+    access_log off;
+}