On Fri, Feb 10, 2012 at 6:46 AM, Aaron Knister <aar...@umbc.edu> wrote: > I'm using mod_perl in a shared hosting environment for some server-side > configuration bits. All dynamic content for the users runs through SuEXEC, > however this obviously doesn't help in the case of mod_perl so I would like > to prevent users from specifying any handlers or other potentially > undesirable mod_perl options/directives in their .htaccess files.
Is it necessary to allow htaccess files? If there's something that you want people to be able to specify, maybe you can use a custom conf file for it instead of allowing htaccess. If it is necessary, can you provide an example of an htaccess directive that you're trying to prevent? - Perrin
