View Single Post
Old 3rd April 2013, 10:27
ispcomm ispcomm is offline
Senior Member
Join Date: Aug 2010
Posts: 167
Thanks: 19
Thanked 11 Times in 11 Posts

So, what would be the suggested scenario for using nginx with "untrusted" users?

Would you suggest to have them open a support request with their snippet, then after evaluation by an admin get that snippet in the available snippets so that the client can add it to their nginx config?

Or, perhaps a different road can be pursued: For example check if nginx parses the new snippet correctly and allow it only when no errors are thrown from it?

Can you envision situations where a nginx parser will accept the snippet, but break other sites running in nginx?
Reply With Quote