httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From matt.fa...@gmail.com
Subject Re: [users@httpd] .htaccess for script aliased directories
Date Fri, 25 Apr 2008 19:56:24 GMT
Limits the require directive to those verbs - what about the others? 
Sent from my BlackBerry® wireless device

-----Original Message-----
From: "Danie Qian" <daniel@bestningning.com>

Date: Fri, 25 Apr 2008 15:53:59 
To:<users@httpd.apache.org>
Subject: Re: [users@httpd] .htaccess for script aliased directories


----- Original Message ----- 
From: "Joshua Slive" <joshua@slive.ca>
To: <users@httpd.apache.org>; "Danie Qian" <daniel@bestningning.com>
Sent: Friday, April 25, 2008 3:39 PM
Subject: Re: [users@httpd] .htaccess for script aliased directories


> On Fri, Apr 25, 2008 at 3:32 PM, Danie Qian <daniel@bestningning.com> 
> wrote:
>
>>         <Limit GET POST>
>>                 require valid-user
>>         </Limit>
>
> Remove the <Limit GET POST> and </Limit> lines. They are dangerous. See:
> http://httpd.apache.org/docs/2.2/mod/core.html#limit
>
> Joshua.
>

From the above link I cant find anything dangerous except for the fact that 
it limits requests to GET,POST methods, about which my users never 
complained. Or, did I miss out anything here? 


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Mime
View raw message