Closed
Bug 362878
Opened 18 years ago
Closed 18 years ago
.htaccess should protect .pm and .pl files by default
Categories
(Webtools Graveyard :: Doctor, defect)
Webtools Graveyard
Doctor
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: LpSolit, Assigned: LpSolit)
Details
Attachments
(1 file)
|
895 bytes,
patch
|
myk
:
review+
|
Details | Diff | Splinter Review |
Perl modules and scripts should not be accessible from the web, except CGI scripts. There may be some customization or passwords or data in these files which should remain secret.
|
Assignee | |
Comment 1•18 years ago
|
||
Attachment #247584 -
Flags: review?(myk)
|
||
Comment 2•18 years ago
|
||
Comment on attachment 247584 [details] [diff] [review]
patch, v1
>+<FilesMatch ^(.*\.pm|.*\.pl|.*\.conf~?)$>
Nit: this regexp would be simpler as:
\.(pm|pl|conf~?)$
Otherwise, good fix! r=myk
Attachment #247584 -
Flags: review?(myk) → review+
|
|
Assignee | |
Comment 3•18 years ago
|
||
I fixed the regexp on checkin, as suggested by myk in comment 2.
Checking in .htaccess;
/cvsroot/mozilla/webtools/doctor/.htaccess,v <-- .htaccess
new revision: 1.3; previous revision: 1.2
done
Status: NEW → RESOLVED
Closed: 18 years ago
Resolution: --- → FIXED
|
||
Updated•9 years ago
|
Product: Webtools → Webtools Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•