[Mediawiki-l] Security issues with directories
Tels
nospam-abuse at bloodgate.com
Mon May 8 11:40:06 UTC 2006
Moin,
On Monday 08 May 2006 00:58, Rick DeNatale wrote:
> On 5/6/06, Brion Vibber <brion at pobox.com> wrote:
> > Note that MediaWiki is open source, so there's little benefit to
> > "seeing" these files. ;)
>
> Well there are some things in LocalSettings.php (e.g. MySql config
> stuff) that I might not want others to see.
When using Apache, add a .htaccess file with the contents:
Deny from all
(Although you need to take care that this doesn't involve subdirectories,
like the skins, images etc. These then need their own .htaccess files
with
Allow from all
in them, or the CSS files and images won't show up. For details, see the
manual of your webbrowser.
Best wishes,
Tels
--
Signed on Mon May 8 13:38:30 2006 with key 0x93B84C15.
Visit my photo gallery at http://bloodgate.com/photos/
PGP key on http://bloodgate.com/tels.asc or per email.
"Five exclamation marks, the sure sign of an insane mind." -- Terry
Pratchett
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 481 bytes
Desc: not available
Url : http://lists.wikimedia.org/pipermail/mediawiki-l/attachments/20060508/3857edd4/attachment.pgp
More information about the MediaWiki-l
mailing list