yep!
if you did this in the section marked for
.ht
anyone with a knowledge of .htaccess overrides can enable any features of
apache that they want, ie switch on PHP support for example.
ideally you should only ALLOW the functions that a required by your
client/service checkout apache.org for a list of all the overrides and what
they can/can't do, you'll be surprised how much you can override with a conf
setting of ALL!
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Herb Rubin
Sent: 11 February 2001 20:46
To: [EMAIL PROTECTED]
Subject: [cobalt-developers] AllowOverride None
In my Raq 4, I noticed in access.conf
AllowOverride None
so that disabled .htaccess files, I changed it to
AllowOverride All
Is this a security hole?
Herb
--
Herb Rubin
Pathfinders Software
[EMAIL PROTECTED]
www.pfinders.com
phone: 415 292-4935
fax: 415 292-4913
_______________________________________________
cobalt-developers mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-developers
_______________________________________________
cobalt-developers mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-developers
