From: pythonsnake Date: Sun, 10 Feb 2013 13:07:09 +0000 (+0100) Subject: Fix bug 461 X-Git-Url: https://vcs.fsf.org/?a=commitdiff_plain;h=37b48053e9f2da3a6e2378874b025ab152f6f614;p=mediagoblin.git Fix bug 461 --- diff --git a/docs/source/siteadmin/deploying.rst b/docs/source/siteadmin/deploying.rst index 91406f96..d1300d72 100644 --- a/docs/source/siteadmin/deploying.rst +++ b/docs/source/siteadmin/deploying.rst @@ -282,6 +282,9 @@ this ``nginx.conf`` file should be modeled on the following:: # Change this to update the upload size limit for your users client_max_body_size 8m; + # prevent attacks (someone uploading a .txt file that the browser interprets as an HTML file, etc.) + add_header X-Content-Type-Options nosniff;· + server_name mediagoblin.example.org www.mediagoblin.example.org; access_log /var/log/nginx/mediagoblin.example.access.log; error_log /var/log/nginx/mediagoblin.example.error.log;