https://systemoverlord.com/tags/nginx.htmlRecent content in Nginx on System OverlordHugoen-usdavid@systemoverlord.com (David Tomaschik)david@systemoverlord.com (David Tomaschik)Wed, 31 Aug 2011 22:53:21 +0000https://systemoverlord.com/2011/08/31/git-on-your-web-server-a-security-reminder/Wed, 31 Aug 2011 22:53:21 +0000david@systemoverlord.com (David Tomaschik)https://systemoverlord.com/2011/08/31/git-on-your-web-server-a-security-reminder/<p> Earlier this month, I wrote about <a href="https://systemoverlord.com/2011/08/04/managing-drupal-with-git">managing a Drupal site with git</a>.  What I neglected to remember, of course, is this places a full copy of your git repository within your web server's document root.  This has the potential to expose any data in your git repository -- a malicious attacker could (depending on your configuration) clone the entire repository, thus exposing source code, configuration files, database dumps, and other sensitive data.</p>https://systemoverlord.com/2011/01/23/welcome-to-nginx/Sun, 23 Jan 2011 17:49:21 +0000david@systemoverlord.com (David Tomaschik)https://systemoverlord.com/2011/01/23/welcome-to-nginx/<p>If you're reading this, it's thanks to Nginx.  As of about midnight last night, all content on SystemOverlord.com is being served up by Nginx.  I did this for two reasons: Nginx has a much smaller memory profile than Apache, which is important when running on a 512MB VPS, and Nginx's preferred PHP path is through a FastCGI interface, which allows me to run separate PHP FastCGIs under different users for each application on my server.  Privilege separation for different webapps has always been a big thing security-wise, and I'm glad I was able to get it going with a minimum of fuss.  <a href="http://wordpress.org">Wordpress</a>, <a href="http://nginx.org">Nginx</a>, <a href="http://mysql.com">MySQL</a>, and <a href="http://ubuntu.com">Ubuntu Server</a> powered, all on a <a href="http://www.linode.com/?r=680a893e24df3597d32f58cd41930e969027dc06">Linode VPS</a>!</p>