Home / Browse / TWiki Enterprise Collaboration Platform / Mail / Archive

TWiki Enterprise Collaboration Platform

Email Archive: twiki-dev (read-only)

2000:	_Jan	_Feb	_Mar	_Apr (4)	_May (38)	_Jun (3)	_Jul (12)	_Aug (4)	_Sep (12)	_Oct (15)	_Nov (26)	_Dec (8)
2001:	_Jan (14)	_Feb (34)	_Mar (105)	_Apr (64)	_May (56)	_Jun (97)	_Jul (180)	_Aug (103)	_Sep (54)	_Oct (21)	_Nov (44)	_Dec (27)
2002:	_Jan (7)	_Feb (10)	_Mar (88)	_Apr (57)	_May (29)	_Jun (12)	_Jul (13)	_Aug (35)	_Sep (12)	_Oct (16)	_Nov (48)	_Dec (94)
2003:	_Jan (36)	_Feb (43)	_Mar (124)	_Apr (63)	_May (77)	_Jun (12)	_Jul (7)	_Aug (40)	_Sep (41)	_Oct (19)	_Nov (22)	_Dec (46)
2004:	_Jan (51)	_Feb (129)	_Mar (82)	_Apr (96)	_May (34)	_Jun (28)	_Jul (107)	_Aug (87)	_Sep (21)	_Oct (50)	_Nov (202)	_Dec (110)
2005:	_Jan (174)	_Feb (159)	_Mar (250)	_Apr (287)	_May (159)	_Jun (139)	_Jul (305)	_Aug (291)	_Sep (558)	_Oct (628)	_Nov (539)	_Dec (396)
2006:	_Jan (828)	_Feb (470)	_Mar (888)	_Apr (524)	_May (518)	_Jun (424)	_Jul (527)	_Aug (208)	_Sep (257)	_Oct (276)	_Nov (308)	_Dec (342)
2007:	_Jan (366)	_Feb (350)	_Mar (265)	_Apr (406)	_May (481)	_Jun (354)	_Jul (195)	_Aug (219)	_Sep (506)	_Oct (434)	_Nov (467)	_Dec (399)
2008:	_Jan (339)	_Feb (185)	_Mar (172)	_Apr (191)	_May (126)	_Jun (149)	_Jul (424)	_Aug (317)	_Sep (164)	_Oct (246)	_Nov (110)	_Dec (123)
2009:	_Jan (82)	_Feb (74)	_Mar (125)	_Apr (133)	_May (51)	_Jun (52)	_Jul (37)	_Aug (48)	_Sep (60)	_Oct (69)	_Nov (52)	_Dec (60)
2010:	_Jan (55)	_Feb (69)	_Mar (55)	_Apr (144)	_May (309)	_Jun (318)	_Jul (114)	_Aug (128)	_Sep (122)	_Oct (96)	_Nov (274)	_Dec (219)
2011:	_Jan (223)	_Feb (241)	_Mar (266)	_Apr (286)	_May (251)	_Jun (214)	_Jul (308)	_Aug (312)	_Sep (192)	_Oct (61)	_Nov (20)	_Dec (35)
2012:	_Jan (165)	_Feb (70)	_Mar (102)	_Apr (96)	_May (101)	_Jun (125)	_Jul (59)	_Aug (108)	_Sep (246)	_Oct (372)	_Nov (456)	_Dec (374)
2013:	_Jan (215)	_Feb (402)	_Mar (386)	_Apr (274)	_May (106)	_Jun	_Jul	_Aug	_Sep	_Oct	_Nov	_Dec

[TWiki-Dev] [SVN] PeterThoeny r18190 - twiki/branches/TWikiRelease04x03

From: <develop@de...> - 2009-10-26 05:42

Author: PeterThoeny
Date: 2009-10-26 00:42:05 -0500 (Mon, 26 Oct 2009)
New Revision: 18190
Trac url: http://develop.twiki.org/trac/changeset/18190

Modified:
   twiki/branches/TWikiRelease04x03/twiki_httpd_conf.txt
Log:
Item6246: Security: twiki root directory should not be exposed as html doc root

Modified: twiki/branches/TWikiRelease04x03/twiki_httpd_conf.txt
===================================================================
--- twiki/branches/TWikiRelease04x03/twiki_httpd_conf.txt	2009-10-26 05:40:48 UTC (rev 18189)
+++ twiki/branches/TWikiRelease04x03/twiki_httpd_conf.txt	2009-10-26 05:42:05 UTC (rev 18190)
@@ -5,21 +5,18 @@
 # include "/home/httpd/twiki/twiki_httpd.conf"
 # to the end of your main httpd.conf file.
 #
-# See also http://twiki.org/cgi-bin/view/TWiki.ApacheConfigGenerator
+# See also http://twiki.org/cgi-bin/view/TWiki/ApacheConfigGenerator
 # that helps you configure Apache
 
 # The first parameter will be part of the URL to your installation e.g.
 # http://example.com/twiki/bin/view/...
 # The second parameter must point to the physical path on your disk. Be
 # careful not to lose any trailing /'s.
-
 #### Change the _second_ path to match your local installation
 ScriptAlias /twiki/bin/ "/home/httpd/twiki/bin/"
 
-# This defines a url that points to the root of the twiki installation. It is
-# used to access files in the pub directory (attachments etc)
-# It must come _after_ the ScriptAlias.
-
+# This defines a url that points to the twiki pub directory, which contains
+# attachments and other files like CSS stylesheets and icons. 
 #### Change the path to match your local installation
 Alias /twiki/ "/home/httpd/twiki/"
 
@@ -61,7 +58,7 @@
 
 	# Password file for TWiki users
 	AuthUserFile /home/httpd/twiki/data/.htpasswd
-	AuthName 'Enter your WikiName: (First name and last name, no space, no dots, capitalized, e.g. JohnSmith). Cancel to register if you do not have one.'
+	AuthName 'Enter your WikiName: (First name and last name, no space, no dots, capitalized, e.g. JohnSmith)'
 	AuthType Basic
 	
 	# File to return on access control error (e.g. wrong password)
@@ -131,31 +128,3 @@
 	# This line will redefine the mime type for the most common types of scripts
 	AddType text/plain .shtml .php .php3 .phtml .phtm .pl .py .cgi
 </Directory>
-
-# Security note: All other directories should be set so
-# that they are *not* visible as URLs, so we set them as =deny from all=.
-
-#### Change the paths to match your local installation
-<Directory "/home/httpd/twiki/data">
-	deny from all
-</Directory>
-
-<Directory "/home/httpd/twiki/templates">
-	deny from all
-</Directory>
-
-<Directory "/home/httpd/twiki/lib">
-	deny from all
-</Directory>
-
-<Directory "/home/httpd/twiki/tools">
-	deny from all
-</Directory>
-
-<Directory "/home/httpd/twiki/locale">
-	deny from all
-</Directory>
-
-<Directory "/home/httpd/twiki/working">
-	deny from all
-</Directory>

TWiki Enterprise Collaboration Platform

Email Archive: twiki-dev (read-only)

7 messages have been excluded from this view by a project administrator.