mirror of
https://github.com/CHN-beta/nixos.git
synced 2024-10-23 06:18:52 +08:00
nginx.webdav: restrict write path
This commit is contained in:
parent
87684a981d
commit
d2479b229e
@ -18,6 +18,10 @@ inputs:
|
||||
webdav = true;
|
||||
detectAuth.users = [ "chn" ];
|
||||
};
|
||||
systemd.tmpfiles.rules = [ "d /srv/webdav 0700 nginx nginx" ];
|
||||
systemd =
|
||||
{
|
||||
tmpfiles.rules = [ "d /srv/webdav 0700 nginx nginx" ];
|
||||
services.nginx.serviceConfig.ReadWritePaths = [ "/srv/webdav" ];
|
||||
};
|
||||
};
|
||||
}
|
||||
|
@ -311,7 +311,6 @@ inputs:
|
||||
AmbientCapabilities = [ "CAP_NET_ADMIN" ];
|
||||
LimitNPROC = 65536;
|
||||
LimitNOFILE = 524288;
|
||||
ReadWritePaths = [ "/srv" ];
|
||||
};
|
||||
}
|
||||
# transparentProxy
|
||||
|
Loading…
Reference in New Issue
Block a user