[Phpmyadmin-devel] Re: Protect against attack on scripts in /libraries
Michal Čihař
michal at cihar.com
Wed Nov 23 11:20:02 CET 2005
Hi all
On Mon 21. 11. 2005 00:52, Marc Delisle wrote:
> As IMO this is an improvement for security in general (path
> disclosure) and not a direct problem we have with 2.7.0, I would
> prefer to let 2.7.0 as is and start moving stuff in HEAD.
Okay, implemented in HEAD.
In case that your test servers do not follow .htaccess files, please
configure them to deny access to libraries folder, so that we can catch
any possible errors with such setup.
--
Michal Čihař | http://cihar.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.phpmyadmin.net/pipermail/developers/attachments/20051123/f6bc9fd3/attachment.sig>
More information about the Developers
mailing list