Hardening suggestion
Posted: Wed Apr 08, 2009 2:15 pm
Hello,
I'm forwarding (to the DevTeam and -?- module maintainers) a suggestion from the French speaking forum :
Add some "deny from all" .htaccess to the default tarball in security sensitive folders like /tmp /lib/subdirs /whatelse
The default tarball as already incorporated fake index.html in such locations to prevent directory listing even on a misconfigured webserver and I like it. Default "deny from all" .htaccess wouldn't hurt either, would they ?
Or it could be sample-to-be-renamed htaccess.txt like the URL rewriting one provided ?
Pierre M.
I'm forwarding (to the DevTeam and -?- module maintainers) a suggestion from the French speaking forum :
Add some "deny from all" .htaccess to the default tarball in security sensitive folders like /tmp /lib/subdirs /whatelse
The default tarball as already incorporated fake index.html in such locations to prevent directory listing even on a misconfigured webserver and I like it. Default "deny from all" .htaccess wouldn't hurt either, would they ?
Or it could be sample-to-be-renamed htaccess.txt like the URL rewriting one provided ?
Pierre M.