Is there a problem with keeping the backend of an NGINX server in /var/www ? (sh.itjust.works)

submitted 1 year ago by carrot@sh.itjust.works to c/webdev@programming.dev

7 comments fedilink hide all child comments

Hi all. I'm looking to make a backend in my NGINX server, for a website that only gets a few views. Right now I'm managing the files of the site using Git, with /var/www/ as the folder on github. I'm looking to create an ip logger to plot onto a map, and I'm wondering if there are any problems with hosting it on /var/www. My main concerns are if it's accessible to other users or if it'll slow down NGINX. I'm absolutely able to do it in another folder, but I am wondering if there are any problems with keeping any files in /var/www. To my knowledge, only past /var/www/html is viewable by a connection.

Thanks!

you are viewing a single comment's thread
view the rest of the comments

[-] carrot@sh.itjust.works 1 points 1 year ago

Sorry, by accessible to users I mean visitors. Some sort of example.com/../.git shouldn't be possible up to my knowledge.

[-] SteveTech@programming.dev 2 points 1 year ago

You're right, unless there's some vulnerability, /var/www isn't accessible by visitors when /var/www/html is configured as the web root in nginx. However if they are files that visitors shouldn't access I probably wouldn't put them in /var/www, but I guess at least you could chmod them like the previous commenter said, so that nginx can't read them.

[-] carrot@sh.itjust.works 2 points 1 year ago

Ahh I see. I never considered the config file. Thank you for the help!

[-] msage@programming.dev 1 points 1 year ago

If you have a git folder anywhere, always put files accessible to public to /var/www/project/public and have document root point to the public directory.

nginx won't let users traverse upwards. Even if you only have static files, exposing /var/www/project as document root makes .git folder accessible.

If you have any server side processing, you put only the barest minimum in the project/public, as the server can load dependencies from project/src, but nginx won't let outsiders access those files.

this post was submitted on 22 Jun 2023

3 points (100.0% liked)

Web Development

3427 readers

1 users here now

Welcome to the web development community! This is a place to post, discuss, get help about, etc. anything related to web development

What is web development?

Web development is the process of creating websites or web applications

Rules/Guidelines

Follow the programming.dev site rules
Keep content related to web development
If what you're posting relates to one of the related communities, crosspost it into there to help them grow
If youre posting an article older than two years put the year it was made in brackets after the title

Related Communities

Wormhole

!cool_github_projects@programming.dev

Some webdev blogs

Not sure what to post in here? Want some web development related things to read?

Heres a couple blogs that have web development related content

https://frontendfoc.us/ - [RSS]
https://wesbos.com/blog
https://davidwalsh.name/ - [RSS]
https://www.nngroup.com/articles/
https://sia.codes/posts/ - [RSS]
https://www.smashingmagazine.com/ - [RSS]
https://www.bennadel.com/ - [RSS]
https://web.dev/ - [RSS]

Credits

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

founded 1 year ago

MODERATORS

snowe@programming.dev

erlingur@programming.dev

Ategon@programming.dev