Browse Source

Prevents Apache from serving CLI scripts

tags/2020.09
Hypolite Petovan 1 month ago
parent
commit
3bd8b81154
3 changed files with 15 additions and 2 deletions
  1. +2
    -2
      .gitignore
  2. +3
    -0
      .htaccess-dist
  3. +10
    -0
      bin/.htaccess

+ 2
- 2
.gitignore View File

@@ -71,8 +71,8 @@ venv/
/addons
/addon

#ignore .htaccess
.htaccess
#ignore base .htaccess
/.htaccess

#ignore filesystem storage default path
/storage


+ 3
- 0
.htaccess-dist View File

@@ -1,3 +1,6 @@
# This file is meant to be copied to ".htaccess" on Apache-powered web servers.
# The created .htaccess file can be edited manually and will not be overwritten by Friendica updates.

Options -Indexes
AddType application/x-java-archive .jar
AddType audio/ogg .oga


+ 10
- 0
bin/.htaccess View File

@@ -0,0 +1,10 @@
# This file prevents browser access to Friendica command-line scripts on Apache-powered web servers.
# It isn't meant to be edited manually, please check the base Friendica folder for the .htaccess-dist file instead.

<IfModule authz_host_module>
Require all denied
</IfModule>
<IfModule !authz_host_module>
Order Allow,Deny
Deny from all
</IfModule>

Loading…
Cancel
Save