Friendica/friendica-github
1
0
Fork 0
mirror of https://github.com/friendica/friendica synced 2024-11-09 17:02:54 +00:00
Code Issues Projects Releases Packages Wiki Activity

.htaccess-dist deny access to some backup files

Browse source 
this PR adds a filematch block to the distributed .htaccess file to deny access to backup files from emacs (~), vim (.swp) and other backup files (.bak).

addressing #11350
This commit is contained in:
Tobias Diekershoff 2022-03-16 19:35:59 +01:00
parent f5bcc4ad4b
commit cd7b9177ea
No known key found for this signature in database
GPG key ID: 25FE376FF17694A1
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
.htaccess-dist
View file

@ -6,6 +6,7 @@ AddType application/x-java-archive .jar
AddType audio/ogg .oga AddType audio/ogg .oga
#AddHandler php53-cgi .php #AddHandler php53-cgi .php
# deny access to log files (friendica.log or php.out)
<FilesMatch "\.(out|log)$"> <FilesMatch "\.(out|log)$">
<IfModule authz_host_module> <IfModule authz_host_module>
#Apache 2.4 #Apache 2.4
@ -17,6 +18,18 @@ AddType audio/ogg .oga
</IfModule> </IfModule>
</FilesMatch> </FilesMatch>
# deny access to backup files
<FilesMatch "(~|\.bak|\.swp)$">
<IfModule authz_host_module>
#Apache 2.4
Require all denied
</IfModule>
<IfModule !authz_host_module>
#Apache 2.2
Deny from all
</IfModule>
</FilesMatch>
<IfModule mod_rewrite.c> <IfModule mod_rewrite.c>
RewriteEngine on RewriteEngine on
# Protect repository directory from browsing # Protect repository directory from browsing