Hardening NGINX Security
Issue
- My security team found that my application under path traversal. My current website URL is https://website.com and I can download the server passwd file if i use https://website.com/?../../../../../../../../etc/passwd
Environment
- Red Hat Enterprise Linux (RHEL)
- nginx
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.