Return-Path:
Delivered-To: apmail-httpd-cvs-archive@httpd.apache.org
Received: (qmail 31408 invoked by uid 500); 5 Aug 2002 20:11:58 -0000
Mailing-List: contact cvs-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: dev@httpd.apache.org
list-help:
list-unsubscribe:
list-post:
Delivered-To: mailing list cvs@httpd.apache.org
Received: (qmail 31395 invoked by uid 500); 5 Aug 2002 20:11:58 -0000
Delivered-To: apmail-apache-1.3-cvs@apache.org
Delivered-To: apmail-httpd-docs-1.3-cvs@apache.org
Date: 5 Aug 2002 20:11:57 -0000
Message-ID: <20020805201157.709.qmail@icarus.apache.org>
From: jwoolley@apache.org
To: httpd-docs-1.3-cvs@apache.org
Subject: cvs commit: httpd-docs-1.3/htdocs/manual/mod mod_info.html.en
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N
jwoolley 2002/08/05 13:11:57
Modified: htdocs/manual/mod mod_info.html.en
Log:
Extra extra warnings.
Submitted by: Zeno
Revision Changes Path
1.13 +8 -0 httpd-docs-1.3/htdocs/manual/mod/mod_info.html.en
Index: mod_info.html.en
===================================================================
RCS file: /home/cvs/httpd-docs-1.3/htdocs/manual/mod/mod_info.html.en,v
retrieving revision 1.12
retrieving revision 1.13
diff -u -d -u -r1.12 -r1.13
--- mod_info.html.en 8 Oct 2001 01:34:31 -0000 1.12
+++ mod_info.html.en 5 Aug 2002 20:11:57 -0000 1.13
@@ -69,6 +69,14 @@
files, including per-directory files (e.g.,
.htaccess). This may have security-related
ramifications for your site.
+
+ In particular, this module can leak sensitive information
+ from the configuration directives of other Apache modules such as
+ system paths, usernames/passwords, database names, etc. Due to
+ the way this module works there is no way to block information
+ from it. Therefore, this module should ONLY be used in a controlled
+ environment and always with caution.
+