From 7594c60c118f185604d3ad12f2b3c0204096064d Mon Sep 17 00:00:00 2001 From: Guilhem Moulin Date: Mon, 21 Mar 2016 14:26:43 +0100 Subject: munin-master CGI: add application-level ACLs to keep non-local users at bay. --- roles/munin-master/files/etc/nginx/sites-available/munin | 4 ++++ 1 file changed, 4 insertions(+) (limited to 'roles') diff --git a/roles/munin-master/files/etc/nginx/sites-available/munin b/roles/munin-master/files/etc/nginx/sites-available/munin index fe5e7e5..d1cbda0 100644 --- a/roles/munin-master/files/etc/nginx/sites-available/munin +++ b/roles/munin-master/files/etc/nginx/sites-available/munin @@ -4,6 +4,10 @@ server { server_name munin.fripost.org; + allow 127.0.0.0/8; + allow ::1/128; + deny all; + access_log /var/log/nginx/munin.access.log; error_log /var/log/nginx/munin.error.log info; -- cgit v1.2.3