File tree Expand file tree Collapse file tree 2 files changed +9
-9
lines changed
src/php/with-apache/rootfs/etc/apache2 Expand file tree Collapse file tree 2 files changed +9
-9
lines changed Original file line number Diff line number Diff line change 22
33All notable changes to this project will be documented in this file.
44
5+ ## [ 5.0.2] - 2024-02-23
6+
7+ Tightened Apache directory permissions to deny access to dotfiles and system directories. This also fixes #59 .
8+
59## [ 5.0.1] - 2024-02-16
610
711We have made some minor improvements to the content of debug messages and variable naming.
Original file line number Diff line number Diff line change @@ -167,17 +167,13 @@ Timeout 60
167167</Directory >
168168
169169# Security settings
170- <FilesMatch "\.(ht.* |ini|log|sh|c)$" >
171- Require all denied
170+ <FilesMatch "^ \.(ht|config|ssh|pem|key|pass |ini|log|sh|c)$" >
171+ Redirect 404 /
172172</FilesMatch >
173173
174- <DirectoryMatch "/\.(?!well-known)" >
175- Require all denied
176- </DirectoryMatch >
177-
178- <FilesMatch "/\.(?!well-known)" >
179- Require all denied
180- </FilesMatch >
174+ <LocationMatch "(^|/)\.(?!well-known)" >
175+ Redirect 404 /
176+ </LocationMatch >
181177
182178# Set basic settings for document root
183179<Directory ${APP_PATH} >
You can’t perform that action at this time.
0 commit comments