Changes between Initial Version and Version 3 of Ticket #7277


Ignore:
Timestamp:
Feb 6, 2008, 4:44:31 PM (16 years ago)
Author:
jmpp@…
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Ticket #7277

    • Property Cc nox@… ryandesign@… added
    • Property Priority changed from Expected to High
    • Property Version changed from 1.2 to
    • Property Milestone changed from to Port Bugs
    • Property Owner changed from james@… to imajes@…

  • Ticket #7277 – Description

    initial v3  
    11By default the apache2 port installs an httpd.conf containing this section which is supposed to prevent malicious users from reading the contents of .htaccess or .htpasswd files:
    22
     3{{{
    34# The following lines prevent .htaccess and .htpasswd files from being
    45# viewed by Web clients.
     
    89    Deny from all
    910</FilesMatch>
     11}}}
    1012
    1113This is insufficient on file systems which are case insensitive, such as Mac OS X's default HFS+ file system. Mac OS X also has other files and directories inside each directory which must not be made accessible to web visitors. See Apple's knowledge base article: