Author:gaojinbo
Time:2010-12-29 php
nginx 0day解決方法,其實不是nginx自己的漏洞,而是PHP PATH_INFO的漏洞 html
方法1:
vi /etc/php.ini
cgi.fix_pathinfo = 0 nginx
方法2:
vi /usr/local/nginx/conf/fastcgi_params
增長如下到文件最前面:
if ($request_filename ~* (.*)\.php) {
set $php_url $1;
}
if (!-e $php_url.php) {
return 403;
} url
完成! spa