Erik
Reputation: 14750
What's the best practices to secure nodejs behind nginx when file uploading?
I have NodeJS behind nginx. I need to make possible to upload small files (5-10 mb around) for parsing and handling them. I need to know about possible attack against this feature so basically I'm interested in the following:
- What are methods to break server down via unsecure file uploading?
- How to prevent that kind of attack and stay server up?
- How to configure nginx and nodejs to secure web server?
Upvotes: 0
Views: 389
Answers (1)
Nikolay Lukyanchuk
Reputation: 874
Use user authorization for file uploading.
Or you can see source code of jQuery file uploader for nodejs. It has validation for file types and file size https://github.com/blueimp/jQuery-File-Upload/tree/master/server/node
Use forever (https://github.com/nodejitsu/forever) or other libs to stand up the server
Upvotes: 1
Related Questions
- What is the best way to send files through HTTP?
- NodeJS remote file upload vulnerability
- How to host and manage file uploads using NodeJS and Nginx?
- Best way to upload file using node js
- How to securely upload files in Node with Express?
- Manage security on file upload to nodejs
- Ways to secure Server communication
- Secure file uploader by express js and bodyParser
- Node.js HTTP Server - How to Secure
- File upload to a Node JS server