'Deny access to /lib but allow access to /assets/lib

I'd like to create an nginx rule to deny access (with a 404 so that the attacker doesn't think it exists) to a root directory /lib, but I do not want to include all directories with the word lib such as /assets/lib.

So in other words:

https://www.example.com/lib/* = should be all 404 ...

https://www.example.com/assets/lib/* = should be OK

location ~ /lib {
    deny all;
    return 404;
}

The above works to block access to all directories that have the word "lib" in them, but that also blocks my "/assets/lib".

Thanks!

nginxopenresty


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Nginx getting the event "ngx_master_****" was not signaled for 5s

Valid characters in nginx upstream name

Nginx proxy_pass with $remote_addr

Nginx the event was not signaled for 5s

how to serve static files through nginx and django in windows

The Streamlit app stops with "Please wait... " and then stops

The Streamlit app stops with "Please wait... " and then stops

Express and nginx net::ERR_CONTENT_LENGTH_MISMATCH

Express and nginx net::ERR_CONTENT_LENGTH_MISMATCH

Locate the nginx.conf file my nginx is actually using

Angular SPA with Custom --base-href and Nginx Routing

What does "trust proxy" actually do in express.js, and do I need to use it?

Nginx ingress controller not giving metrics for prometheus

(13: Permission denied) while connecting to upstream:[nginx]

Ubuntu Nginx/Laravel 500 Internal Server Error