Page MenuHomePhabricator
Create Task
Maniphest T4636

for added security, add .htaccess files to sensitive directories
Closed, ResolvedPublic
Actions

Description

Author: mw-bugs

Description:
Add an .htaccess to sensitive installation directories, inserting at a minimum:

Options -Indexes

to help prevent directory browsing on a Per-Directory basis...

Version: 1.5.x
Severity: normal
URL: http://www.insecurity.org/images/

Details

Reference
bz2636

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 21 2014, 8:35 PM
bzimport added a project: MediaWiki-Installer.
bzimport set Reference to bz2636.
bzimport added a subscriber: Unknown Object (MLST).
bzimport created this task.Jun 30 2005, 11:19 PM
brion added a comment.Jun 30 2005, 11:23 PM

Note that:
a) we already include several .htaccess files with 'Deny from all'.
b) our directory layout and standard contents are public knowledge and well-known.

Closing as duplicate of bug 415 for any remaining issues.

  • This bug has been marked as a duplicate of 415 ***
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL