[pLog-svn] r5379 - plog/branches/lifetype-1.2/gallery

Oscar Renalias oscar at renalias.net
Fri May 4 08:11:34 EDT 2007


Yeah I think we should at least deny .php and probably .htm[l] too,
just in case.

On 5/4/07, Jon Daley <plogworld at jon.limedaley.com> wrote:
>         Right. I forgot about that.  Maybe we should go at it from the
> other way - deny *.php?
>
> On Fri, 4 May 2007, Oscar Renalias wrote:
>
> > But now that I look at these rules... does it mean that files which
> > are not *.jpg, *.png and *.gif are forbidden? How about video files
> > (.avi, .wmv), audio files, zip files, text files, etc?
> >
> > On 5/4/07, Oscar Renalias <oscar at renalias.net> wrote:
> >> Yes, I think we need uppercase extensions.
> >>
> >> On 5/4/07, jondaley at devel.lifetype.net <jondaley at devel.lifetype.net> wrote:
> >>> Author: jondaley
> >>> Date: 2007-05-04 06:47:02 -0400 (Fri, 04 May 2007)
> >>> New Revision: 5379
> >>>
> >>> Added:
> >>>    plog/branches/lifetype-1.2/gallery/.htaccess
> >>> Log:
> >>> secure this directory a little - to help 'Nomad's trouble.  Do we need uppercase extensions here too? http://forums.lifetype.net/viewtopic.php?t=6410
> >>>
> >>> Added: plog/branches/lifetype-1.2/gallery/.htaccess
> >>> ===================================================================
> >>> --- plog/branches/lifetype-1.2/gallery/.htaccess                                (rev 0)
> >>> +++ plog/branches/lifetype-1.2/gallery/.htaccess        2007-05-04 10:47:02 UTC (rev 5379)
> >>> @@ -0,0 +1,19 @@
> >>> +<Files "*">
> >>> + Order allow,deny
> >>> + Deny from all
> >>> +</Files>
> >>> +
> >>> +<Files "*.gif">
> >>> + Order deny,allow
> >>> + Allow from all
> >>> +</Files>
> >>> +
> >>> +<Files "*.png">
> >>> + Order deny,allow
> >>> + Allow from all
> >>> +</Files>
> >>> +
> >>> +<Files "*.jpg">
> >>> + Order deny,allow
> >>> + Allow from all
> >>> +</Files>
> >>>
> >>> _______________________________________________
> >>> pLog-svn mailing list
> >>> pLog-svn at devel.lifetype.net
> >>> http://limedaley.com/mailman/listinfo/plog-svn
> >>>
> >>
> > _______________________________________________
> > pLog-svn mailing list
> > pLog-svn at devel.lifetype.net
> > http://limedaley.com/mailman/listinfo/plog-svn
> >
>
> --
> Jon Daley
> http://jon.limedaley.com/
>
> If everybody's thinking alike, somebody isn't thinking.
> -- Unknown
> _______________________________________________
> pLog-svn mailing list
> pLog-svn at devel.lifetype.net
> http://limedaley.com/mailman/listinfo/plog-svn
>


More information about the pLog-svn mailing list