### Securing Images
-By default, Images are stored in a way which is publicly accessible which ensures performance while using BookStack.
-Listed below are a few options for increasing image security.
+By default, images are stored in a way which is publicly accessible which ensures performance while using BookStack.
+Listed below are methods for increasing image security where needed.
-#### Alternative Storage Options
+#### File Storage Options
-Review our [file upload storage options](/docs/admin/upload-config/#storage-options) documentation for image storage options that add addition access or permission control
-to image requests.
+In our [file upload storage options](/docs/admin/upload-config/#storage-options) documentation we list the available options
+for storing file uploads, along with the permission controls and extra considerations for each.
+You should review the available options to determine what works best for your use-case.
-#### Complex Urls
+#### Complex URLs
In the settings area of BookStack you can find the option 'Enable higher security image uploads?'. Enabling this will add a 16 character
random string to the name of image files to prevent easy guessing of URLs. This increases security without potential performance concerns.
**NGINX**
```nginx
-# By default indexes are disabled on Nginx but if you have them enabled
+# By default indexes are disabled on NGINX but if you have them enabled
# add this to your BookStack server block
location /uploads {
autoindex off;
If you are using Amazon S3 for file storage then access will depend on your S3 permission
settings. Unlike images, BookStack will not automatically attempt to make uploaded attachments
-publicly accessible.
+publicly accessible.
---
projects / website / commitdiff