httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rodent of Unusual Size <Ken.C...@Golux.Com>
Subject Re: Extra configuration for security?
Date Mon, 11 Feb 2002 18:42:19 GMT
Guille -bisho- wrote:
> <Files ~ "^\.ht">
>     Order allow,deny
>     Deny from all
> </Files>
> It's very interesting to add:
> <Files ~ "(~|.swp|.inc|.conf|.bak|.old|.kk)$">
>     Order deny,allow
>     Deny from all
> </Files>

Why are you reversing the order from 'allow,deny' to 'deny,allow'?
The former is more restrictive and I think should be kept.

Otherwise, looks like a good idea to me.  (And for anyone
who suggests we shouldn't special-case PHP, just remember
that it's an ASF project -- so maybe we should add code like this
for the others, as well [e.g., mod_dtcl].)
#ken	P-)}

Ken Coar, Sanagendamgagwedweinini  http://Golux.Com/coar/
Author, developer, opinionist      http://Apache-Server.Com/

"Millennium hand and shrimp!"

View raw message