steffen: server/kolabd/kolabd/templates httpd.conf.template.in, 1.4, 1.5
cvs at kolab.org
cvs at kolab.org
Tue Nov 21 23:08:01 CET 2006
- Previous message: martin: doc/kolab-formats commonfields.sgml, 1.22, 1.23 contacts.sgml, 1.15, 1.16 kolabformat.sgml, 1.17, 1.18 mail.sgml, 1.1, 1.2
- Next message: gunnar: server/kolab-resource-handlers/kolab-resource-handlers/freebusy pfb.php.in, 1.7, 1.8 freebusyldap_dummy.class.php, 1.1, 1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: steffen
Update of /kolabrepository/server/kolabd/kolabd/templates
In directory doto:/tmp/cvs-serv19897
Modified Files:
httpd.conf.template.in
Log Message:
Protection of rogue scripts in fbview (issue1507)
Index: httpd.conf.template.in
===================================================================
RCS file: /kolabrepository/server/kolabd/kolabd/templates/httpd.conf.template.in,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -d -r1.4 -r1.5
--- httpd.conf.template.in 4 Apr 2006 18:54:13 -0000 1.4
+++ httpd.conf.template.in 21 Nov 2006 22:07:59 -0000 1.5
@@ -137,8 +137,17 @@
<Location />
ErrorDocument 403 https://@@@fqdnhostname@@@/admin/
</Location>
-<Location /fbview>
- ErrorDocument 403 https://@@@fqdnhostname@@@/fbview/
+<Location /fbview/*.php>
+ Deny from all
+ ErrorDocument 403 https://@@@fqdnhostname@@@/fbview/
+</Location>
+<Location /fbview/index.php>
+ Order allow,deny
+ Allow from all
+</Location>
+<Location /fbview/login.php>
+ Order allow,deny
+ Allow from all
</Location>
<Files ~ "^\.ht">
- Previous message: martin: doc/kolab-formats commonfields.sgml, 1.22, 1.23 contacts.sgml, 1.15, 1.16 kolabformat.sgml, 1.17, 1.18 mail.sgml, 1.1, 1.2
- Next message: gunnar: server/kolab-resource-handlers/kolab-resource-handlers/freebusy pfb.php.in, 1.7, 1.8 freebusyldap_dummy.class.php, 1.1, 1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the commits
mailing list