On Sat, Dec 1, 2012 at 4:03 AM, Richard Hipp <d...@sqlite.org> wrote: > I wonder if it should be even more restrictive - and only deliver static > content that ends in some well-known subset of suffices: *.html, *.htm, > *.jpg, *.jpeg, *.gif, *,png, *.txt, *.css, *.js
I think this would be too restrictive. On a related note, I think you should consider making the previous behaviour (not serving static files) the default one, and serve static files only when --static-files or similar flag is supplied. I'm worried that this change may be surprising to some people who currently may store sensitive information along with their repositories. When they upgrade to the new version, suddenly their files become exposed to the world. -- Dmitry Chestnykh http://www.codingrobots.com _______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
