From 1e88625548e3afe87ca5597b6039c59ecc9aaad2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ba=CC=81lint=20Szekeres?= <balint.szekeres@feat.agency>
Date: Wed, 22 May 2019 14:52:24 +0200
Subject: [PATCH] . files security fix fixes #88 changes #50

---
 public/templates/conf/nginxconfig.io/general.conf.html | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/public/templates/conf/nginxconfig.io/general.conf.html b/public/templates/conf/nginxconfig.io/general.conf.html
index 705485d..5eae2fa 100644
--- a/public/templates/conf/nginxconfig.io/general.conf.html
+++ b/public/templates/conf/nginxconfig.io/general.conf.html
@@ -11,10 +11,15 @@ add_header Content-Security-Policy "{{ data.content_security_policy }}" always;<
 add_header Strict-Transport-Security "max-age=31536000{{ isHSTSSubdomains() ? '; includeSubDomains' : '' }}{{ isHSTSPreload() ? '; preload' : '' }}" always;</span>
 
 # . files
-location ~ /\.(?!well-known) {
+location ^~ /. {
 	deny all;
 }
 
+# .well-known
+location ^~ /.well-known/ {
+	allow all;
+}
+
 # favicon.ico
 location = /favicon.ico {
 	log_not_found off;<!--