From f6b1bbbfd29a3088370745cd67e706ebfba26676 Mon Sep 17 00:00:00 2001
From: fleischsalatinspace <fleischsalat@space>
Date: Wed, 15 Sep 2021 21:52:43 +0200
Subject: [PATCH] static/nginx/site.conf: hotfix to disable access to .ini and
 .log files

(cherry picked from commit 1c1cfbfdc752e030c2be4703aebfd934fa4a09fc)
---
 static/nginx/site.conf | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/static/nginx/site.conf b/static/nginx/site.conf
index 621ca2a..f9fb8ff 100755
--- a/static/nginx/site.conf
+++ b/static/nginx/site.conf
@@ -53,6 +53,16 @@ server {
             expires 5d;
         }
 
+	# hotfix for info disclosure
+        location ~* \.(ini)$ {
+            log_not_found off;
+            deny all;
+        }
+        location ~* \.(log)$ {
+            log_not_found off;
+            deny all;
+        }
+
         # deny access to . files, for security
         #
         location ~ /\. {