[11960] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: More fun with WWWBoard

daemon@ATHENA.MIT.EDU (Vladimir Dubrovin)
Wed Sep 22 14:28:21 1999

Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id:  <10428.990922@sandy.ru>
Date:         Wed, 22 Sep 1999 10:16:51 +0400
Reply-To: Vladimir Dubrovin <vlad@sandy.ru>
From: Vladimir Dubrovin <vlad@SANDY.RU>
X-To:         Chris Ridd <Chris.Ridd@MESSAGINGDIRECT.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <19912.937830278@MessagingDirect.com>

Hello Chris Ridd,

20.09.99 16:24, you wrote: More fun with WWWBoard;


C> In Apache you'd configure this as follows:

C> <Files passwd.txt>
C> deny from all
C> </Files>


or put it in some directory inside your web home and configure

<Limit GET>
deny from all
</Limit>

<Limit POST>
deny from all
</Limit>

for  this  directory.  It's more safe, because some text editors leave
backup copy of the file, for example passwd.txt~. In this case you are
safe even if you forget to remove this file.



  +=-=-=-=-=-=-=-=-=+
  |Vladimir Dubrovin|
 =+=-=-=-=-=-=-=-=-=+=-=


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[11960] in bugtraq

Re: More fun with WWWBoard

daemon@ATHENA.MIT.EDU (Vladimir Dubrovin)Wed Sep 22 14:28:21 1999

daemon@ATHENA.MIT.EDU (Vladimir Dubrovin)
Wed Sep 22 14:28:21 1999