Tobias Diekershoff
cd7b9177ea
this PR adds a filematch block to the distributed .htaccess file to deny access to backup files from emacs (~), vim (.swp) and other backup files (.bak). addressing #11350
56 lines
1.5 KiB
Text
56 lines
1.5 KiB
Text
# This file is meant to be copied to ".htaccess" on Apache-powered web servers.
|
|
# The created .htaccess file can be edited manually and will not be overwritten by Friendica updates.
|
|
|
|
Options -Indexes
|
|
AddType application/x-java-archive .jar
|
|
AddType audio/ogg .oga
|
|
#AddHandler php53-cgi .php
|
|
|
|
# deny access to log files (friendica.log or php.out)
|
|
<FilesMatch "\.(out|log)$">
|
|
<IfModule authz_host_module>
|
|
#Apache 2.4
|
|
Require all denied
|
|
</IfModule>
|
|
<IfModule !authz_host_module>
|
|
#Apache 2.2
|
|
Deny from all
|
|
</IfModule>
|
|
</FilesMatch>
|
|
|
|
# deny access to backup files
|
|
<FilesMatch "(~|\.bak|\.swp)$">
|
|
<IfModule authz_host_module>
|
|
#Apache 2.4
|
|
Require all denied
|
|
</IfModule>
|
|
<IfModule !authz_host_module>
|
|
#Apache 2.2
|
|
Deny from all
|
|
</IfModule>
|
|
</FilesMatch>
|
|
|
|
<IfModule mod_rewrite.c>
|
|
RewriteEngine on
|
|
# Protect repository directory from browsing
|
|
RewriteRule "(^|/)\.git" - [F]
|
|
|
|
# Rewrite current-style URLs of the form 'index.php?pagename=x'.
|
|
# Also place auth information into REMOTE_USER for sites running
|
|
# in CGI mode.
|
|
|
|
# If you have troubles or use VirtualDocumentRoot
|
|
# uncomment this and set it to the path where your friendica installation is
|
|
# i.e.:
|
|
# Friendica url: http://some.example.com
|
|
# RewriteBase /
|
|
# Friendica url: http://some.example.com/friendica
|
|
# RewriteBase /friendica/
|
|
#
|
|
#RewriteBase /
|
|
|
|
RewriteCond %{REQUEST_FILENAME} !-f
|
|
RewriteCond %{REQUEST_FILENAME} !-d
|
|
RewriteRule ^(.*)$ index.php?pagename=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA]
|
|
|
|
</IfModule>
|