[PATCH] Use SymLinksIfOwnerMatch rather than FollowSymLinks in .htaccess
Bernardo Innocenti
bernie at codewiz.org
Mon Dec 10 18:57:49 EST 2007
This allows the global httpd configureation to be somewhat less
permissive (FollowSymLinks may be abused in ~/public_html my a
malicious user).
Signed-off-by: Bernardo Innocenti <bernie at codewiz.org>
---
streams.d/olpc-development.stream | 10 +++++-----
1 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/streams.d/olpc-development.stream b/streams.d/olpc-development.stream
index ebc2722..0f823bb 100755
--- a/streams.d/olpc-development.stream
+++ b/streams.d/olpc-development.stream
@@ -317,11 +317,11 @@ olpc_development_stream_done()
{
# write out the index files
cat <<EOF > .htaccess
-Options Indexes FollowSymLinks
- IndexOptions FancyIndexing SuppressDescription SuppressHTMLPreamble
- HeaderName header.html
- ReadmeName footer.html
- IndexIgnore header.html footer.html .htaccess
+Options Indexes SymLinksIfOwnerMatch
+IndexOptions FancyIndexing SuppressDescription SuppressHTMLPreamble
+HeaderName header.html
+ReadmeName footer.html
+IndexIgnore header.html footer.html .htaccess
EOF
cat <<EOF >header.html
--
1.5.3.7.1149.g591a
More information about the Devel
mailing list