How to block .git Folder serverwide on NGINX?

Taoiseach

7/20/23, 11:51 PM

I have a question about blocking the .git folders server wide on a NGINX system. At the moment I'm playing around a little with NGINX, I actually use Apache. In Apache, it's actually no problem to block all requests to a .git folder server wide. Is there any setting for NGINX as well? If so, where do I need to put it, or do I have to do that with every site hosted on the server?

Thanks a lot guys, have a great weekend.

0 + 0

nginx

web-server

network-security

Score:3

Server

Aleksei Novikov

8/9/24, 8:56 AM

You might want to block all locations starting with a dot on any level, i.e. .env, .git, .htaccess, etc. and make it look like there is no such location at all instead of confirming its existence to potential attackers.

location ~ /\. {
    return 404;
}

Another option is return 444; which makes nginx not send anything, as if the server is not even responding.

+ 1

LianSheng

8/23/24, 5:05 AM

In addition, if you have a domain name hosted with CloudFlare, using `return 444` may cause some pages of the website to be rendered differently from other pages, which will make the attacker realize that there is something special here.

Score:0

Server

Moshe Katz

7/21/23, 1:37 AM

A location block like this should do what you want:

location /.git {
  deny all;
}

That will return a 403 response.

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to block .git Folder serverwide on NGINX?

TH: จะบล็อก .git Folder ทั่วทั้งเซิร์ฟเวอร์บน NGINX ได้อย่างไร

RO: Cum să blochezi folderul .git la nivel de server pe NGINX?

RU: Как заблокировать папку .git на сервере NGINX?

VI: Làm cách nào để chặn Thư mục .git trên toàn máy chủ trên NGINX?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.