I have a question about following the 'Best practices for secure Zabbix setup' from the official documentation while also using docker(compose) to setup the zabbix services.
Two things in the documentation require changes to the nginx/apache settings, but I'm not quite sure how to do this without entirely overwriting the nginx.conf.
Disabling web server information exposure and Hiding the file with list of common passwords
An example:
It requires adding the following to the nginx.conf
However this is not done by default in the Docker image, and doesn't seem to be configurable.
Is there a way through docker compose to add these rules to the webserver configuration?
Or is this something overlooked in de Docker image?
Two things in the documentation require changes to the nginx/apache settings, but I'm not quite sure how to do this without entirely overwriting the nginx.conf.
Disabling web server information exposure and Hiding the file with list of common passwords
An example:
It requires adding the following to the nginx.conf
Code:
location = /data/top_passwords.txt {
deny all;
return 404;
}
Is there a way through docker compose to add these rules to the webserver configuration?
Or is this something overlooked in de Docker image?