dokuwikirocks I'm using nginx and I'm wondering if it is necessary to disable PHP execution in the user upload directory. If so, is there a consensus on the best way to do this in nginx? I'm currently doing this: location ~ ^/(data|conf|bin|inc)/ { deny all; }
andi Access to the data directory should be completely forbidden. See https://www.dokuwiki.org/security#deny_directory_access_in_nginx