Block direct access to .inc files not working

I’ve a nginx server on CentOS with PHP setup.
I’m trying to block direct access to .inc files

I’ve added the following to nginx.conf

  location ~ /\.inc
  {
    deny all;
  }

& restarted nginx.

But I still able to access .inc files like
https://mydomain,com/includes/config.inc

Pls suggest what I may be missing or how else to fix this issue. I Need
to
block access to all .inc files.

Thanks
Sans

Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264663,264663#msg-264663

Hello!

On 2/20/2016 4:07 PM, rsclmumbai wrote:

I’ve a nginx server on CentOS with PHP setup.
I’m trying to block direct access to .inc files

I’ve added the following to nginx.conf

  location ~ /\.inc
  {
    deny all;
  }

Have you try :

location ~ .inc {
deny all;
}

@dewanggaba Perfect. That worked like a charm.
Thanks!

Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264663,264680#msg-264680

You should block access in php file.

For example:
You define using defined ( ‘ACCESS’… in any file you want direct
access
and put the line below to every php files:
defined ( ‘ACCESS’ ) or die ( ‘Restricted Access’ );

Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264663,264694#msg-264694

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs