[3560] in WWW Security List Archive
Re: Alta Vista may or may not harvest unadvertised documents
daemon@ATHENA.MIT.EDU (Oren Arbit)
Fri Nov 15 22:05:02 1996
Date: Fri, 15 Nov 1996 18:17:13 -0600
From: Oren Arbit <bigo@execpc.com>
To: John Robert LoVerso <loverso@osf.org>
CC: "David W. Morris" <dwm@xpasc.com>, Steven Bellovin <smb@research.att.com>,
"David M. Chess" <CHESS@watson.ibm.com>, www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
John Robert LoVerso wrote:
>
> smb wrote:
> > Blatant assertion: servers should refuse to deal with directories without
> > explicit index.html files. If it's not there, the directory won't be
>
> In fact, NCSA and Apache do this. Just take the "Options Indexes" out of
> srm.conf. If you add "AllowOverride Indexes" then you can enable indexing
> on a per directory basis by putting "Options Indexes" in the .htaccess file.
> Since the server will walk up a file tree until it finds a .htaccess file,
> then you can allow indexing on a whole tree by just putting a single
> .htaccess at the root.
>
> Too bad there is no way to say "Options NoIndexes".
>
> John
Please remove me from your mailing list! Thanx,
Oren
