I have installed Defender on my site and am trying to 'harden' it by following all the suggestions. When it comes to the Prevent PHP Execution I am having a little difficulty.
I placed the code that you provide into the file /etc/nginx/sites-available/site-name just below "include .../*.conf"
above "location ~ \.php"
After restarting nginx it does not seem to reflect the change that was made. Did I place it in the incorrect place?