tags 500202 + confirmed pending thanks OoO En cette matinée ensoleillée du vendredi 26 septembre 2008, vers 09:28, Michal Čihař <[EMAIL PROTECTED]> disait :
>> The lighttpd config file contains:
>> $HTTP["url"] =~ "^/roundcube/config|/roundcube/temp|/roundcube/logs" {
>> url.access-deny = ( "" )
>> }
>>
>> Therefore, the directory should not be accessible. Maybe the file is not
>> clear enough about what to modify when changing roundcube location.
> I know that both apache and lighttpd files contain rules to limit
> access, thats why I did not consider it as a security issue :-).
>> In fact, .htaccess should not be shipped with roundcube.
> That's also a solution...
Hi Michal!
This has been corrected in the SVN. Thanks for noticing this.
--
# Okay, what on Earth is this one supposed to be used for?
2.4.0 linux/drivers/char/cp437.uni
pgpanQAeYSu9A.pgp
Description: PGP signature
