Preventing debug.log web browser access and caching ?
-
I installed your plugin on a Nginx server and it seems by default the debug.log is completely public web accessible if you navigate to the debug.log URL at
https://domain.com/wp-content/wp-cloudflare-super-page-cache/domain.com/debug.log
I tried adding a wildcard to URIs not to cache but it still caches it at Cloudflare CDN cache level
Prevent the following URIs to be cached
One URI per line. You can use the * for wildcard URLs.
Example: /my-page
/my-main-page/my-sub-page
/my-main-page*I have set
/*ao_noptirocket*
/*jetpack=comms*
/*ao_noptirocket*
/*debug.log*but still debug.log is cached at CF CDN cache level
curl -I https://domain.com/wp-content/wp-cloudflare-super-page-cache/domain.com/debug.log 2>&1 | egrep ‘CF-Cache-Status|HTTP/|Age:’
HTTP/1.1 200 OK
CF-Cache-Status: HIT
Age: 364As to why the debug.log is public web accessible, I’ll write some Nginx rules to block access. Though best option would be by default not to save the debug.log in a web accessible directory which isn’t protected.
- The topic ‘Preventing debug.log web browser access and caching ?’ is closed to new replies.
