From 4b1d5d6e384fc5bddff8ee1c7cb35b8ea9c84bf3 Mon Sep 17 00:00:00 2001 From: alecpl Date: Sat, 2 Jul 2011 08:20:15 +0000 Subject: Improve .htaccess rules to make it less easy to fingerprint roundcube version by denying access to files and stoping directory indexes (#1484066) --- .htaccess | 6 ++++-- program/.htaccess | 4 ++++ 2 files changed, 8 insertions(+), 2 deletions(-) create mode 100644 program/.htaccess diff --git a/.htaccess b/.htaccess index 704779e2e..2bc9f95ea 100644 --- a/.htaccess +++ b/.htaccess @@ -29,6 +29,9 @@ php_value mbstring.func_overload 0 RewriteEngine On RewriteRule ^favicon.ico$ skins/default/images/favicon.ico +# security rules +RewriteRule .svn/ - [F] +RewriteRule ^README|INSTALL|LICENSE|SQL|bin|CHANGELOG$ - [F] @@ -46,5 +49,4 @@ ExpiresDefault "access plus 1 month" FileETag MTime Size - - +Options -Indexes diff --git a/program/.htaccess b/program/.htaccess new file mode 100644 index 000000000..4ad1b9d12 --- /dev/null +++ b/program/.htaccess @@ -0,0 +1,4 @@ + +RewriteEngine On +RewriteRule !^js|.*\.gif$ - [F] + -- cgit v1.2.3