My apology if this is an seems like an ignorant question. Is it possible to set up WSGI or ngix on PA to just outright reject requests that contain '.ini', '.asp', '.php', '.mdb'?
My apology if this is an seems like an ignorant question. Is it possible to set up WSGI or ngix on PA to just outright reject requests that contain '.ini', '.asp', '.php', '.mdb'?
Unfortunately there isn't, but I'll add it to our list -- it would be nice if script kiddie's attempts to break into people's sites didn't pollute the access logs.
Exactly the reason I posted. Here's a post that got me thinking.
https://groups.google.com/forum/#!topic/django-users/K_tC-sLgYjw
Thanks, that's an interesting link!