On Tue, 2012-09-18 at 00:00 +0200, Matthias Urlichs wrote: > fastcgi, but yes. Well... we have to expect both causing troubles...
> > Big problem though is, are the files then served as normal files by > > Apache? > Yes. The file gets served as-is, with a mimetype of > application/x-whatever-php. This is really strange... I mean that it gets this MIME type. Does anyone have an explanation for this? Cause I've always thought Apache considers handlers and MIME types to be different "classes". > If there's a database password / server secret in there, > $WORLD now knows it. > In an ideal world, your server cannot serve the include file > which has the actual secret sauce that's used by index.php. > Most people choose not to live in an ideal world. ;-) Of course,... the main reason why I opened the other bugs about the very same problem, when MIME Types were dropped from mime-support. Anyway... right now I have no real ideas how to go on, except perhaps one... Ondrej? Chris.
smime.p7s
Description: S/MIME cryptographic signature
