diff options
| author | supahgreg <supahgreg@users.noreply.github.com> | 2025-10-05 19:53:08 +0000 |
|---|---|---|
| committer | supahgreg <supahgreg@users.noreply.github.com> | 2025-10-05 19:53:08 +0000 |
| commit | 987e283677bde3d3f5926655a4673fb38961d08b (patch) | |
| tree | a28b99f9cabe226b8ebff43e52f71cc8cf3f5141 /Securing-Cache-Directories.md | |
| parent | 978c6fafdef0f6efd70f57cb1e86bd0a662188fd (diff) | |
Switch to GitHub format for alerts/notifications.
Diffstat (limited to 'Securing-Cache-Directories.md')
| -rw-r--r-- | Securing-Cache-Directories.md | 80 |
1 files changed, 40 insertions, 40 deletions
diff --git a/Securing-Cache-Directories.md b/Securing-Cache-Directories.md index b78cafc..15dba7a 100644 --- a/Securing-Cache-Directories.md +++ b/Securing-Cache-Directories.md @@ -1,40 +1,40 @@ -# Securing Cache Directories
-
-!!! notice
-
- Official container images restrict `/cache` access by default. This page applies only to
- legacy host installations.
-
-While nothing critical is stored in cache directories by tt-rss nor do files
-have easily guessable names, you may consider forbidding external access over
-HTTP to these directories anyway. This is not required, however.
-
-You may also consider restricting access to <code>config.php</code>, just in case.
-
-## Using nginx
-
-```nginx
-location /tt-rss/cache {
- deny all;
-}
-
-location = /tt-rss/config.php {
- deny all;
-}
-```
-
-Note: official docker setup has this out of the box.
-
-## Using apache (2.4 syntax)
-
-```apache
-<Directory /var/www/html/tt-rss/cache>
- Require all denied
-</Directory>
-
-<Directory /var/www/html/tt-rss>
- <Files "config.php">
- Require all denied
- </Files>
-</Directory>
-```
+# Securing Cache Directories + +[!NOTE] + + Official container images restrict `/cache` access by default. This page applies only to + legacy host installations. + +While nothing critical is stored in cache directories by tt-rss nor do files +have easily guessable names, you may consider forbidding external access over +HTTP to these directories anyway. This is not required, however. + +You may also consider restricting access to <code>config.php</code>, just in case. + +## Using nginx + +```nginx +location /tt-rss/cache { + deny all; +} + +location = /tt-rss/config.php { + deny all; +} +``` + +Note: official docker setup has this out of the box. + +## Using apache (2.4 syntax) + +```apache +<Directory /var/www/html/tt-rss/cache> + Require all denied +</Directory> + +<Directory /var/www/html/tt-rss> + <Files "config.php"> + Require all denied + </Files> +</Directory> +``` |