Fix bug 461

author pythonsnake <pythonsnake98@gmail.com>

Sun, 10 Feb 2013 13:07:09 +0000 (14:07 +0100)

committer Christopher Allan Webber <cwebber@dustycloud.org>

Sun, 24 Feb 2013 22:38:01 +0000 (16:38 -0600)
author pythonsnake <pythonsnake98@gmail.com>
Sun, 10 Feb 2013 13:07:09 +0000 (14:07 +0100)
committer Christopher Allan Webber <cwebber@dustycloud.org>
Sun, 24 Feb 2013 22:38:01 +0000 (16:38 -0600)
diff --git a/docs/source/siteadmin/deploying.rst b/docs/source/siteadmin/deploying.rst

index 91406f9665155e0790497251b597a72f61acb32e..d1300d720976c314fc9b4934035907e9221bdea7 100644 (file)
--- a/docs/source/siteadmin/deploying.rst
+++ b/docs/source/siteadmin/deploying.rst
@@ -282,6 +282,9 @@ this ``nginx.conf`` file should be modeled on the following::
       # Change this to update the upload size limit for your users
       client_max_body_size 8m;
  
+     # prevent attacks (someone uploading a .txt file that the browser interprets as an HTML file, etc.)
+     add_header X-Content-Type-Options nosniff;·
+
       server_name mediagoblin.example.org www.mediagoblin.example.org;
       access_log /var/log/nginx/mediagoblin.example.access.log;
       error_log /var/log/nginx/mediagoblin.example.error.log;
author	pythonsnake <pythonsnake98@gmail.com>
	Sun, 10 Feb 2013 13:07:09 +0000 (14:07 +0100)
committer	Christopher Allan Webber <cwebber@dustycloud.org>
	Sun, 24 Feb 2013 22:38:01 +0000 (16:38 -0600)