[Phpmyadmin-devel] Re: Protect against attack on scripts in /libraries

Michal Čihař michal at cihar.com
Wed Nov 23 11:20:02 CET 2005


Hi all

On Mon 21. 11. 2005 00:52, Marc Delisle wrote:
> As IMO this is an improvement for security in general (path
> disclosure) and not a direct problem we have with 2.7.0, I would
> prefer to let 2.7.0 as is and start moving stuff in HEAD.

Okay, implemented in HEAD. 

In case that your test servers do not follow .htaccess files, please 
configure them to deny access to libraries folder, so that we can catch 
any possible errors with such setup.

-- 
    Michal Čihař | http://cihar.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.phpmyadmin.net/pipermail/developers/attachments/20051123/f6bc9fd3/attachment.sig>


More information about the Developers mailing list