we’re not sure how to stop this, but on a few of our projects the
database.yml is accessble and on others it’s not (only in an alpha/beta
environment, production is OK).
regardless we still need to stop it from being accessed.
an example is beta.mydomain.com/config/database.yml
that will actually download the database.yml file. any ideas on how to
stop this from happening?
we’ve tried blocking it in the nginx config to no avail. it has to be
something we’ve done to our ruby configs somewhere.