source: trunk/contrib/.htaccess @ 1423

Last change on this file since 1423 was 1423, checked in by gogo, 16 months ago

Deny all access to contrib from the web (assuming an apache server).

File size: 1.2 KB
Line 
1<IfModule mod_php.c>
2 php_flag engine off
3</IfModule>
4AddType text/html .html .htm .shtml .php .php3 .php4 .php5 .php6 .php7 .php8 .phtml .phtm .pl .py .cgi
5RemoveHandler .php
6RemoveHandler .php8
7RemoveHandler .php7
8RemoveHandler .php6
9RemoveHandler .php5
10RemoveHandler .php4
11RemoveHandler .php3
12
13# Nothing in the contrib directory should be accessed from a web browser at all
14# so we will setup some blanket rules to deny access
15
16# Apache < 2.3
17<IfModule !mod_authz_core.c>
18    # Deny,Allow means
19    #  if both match then allow,
20    #  else if neither match then allow,
21    #  else if deny matches then deny,
22    #  else if allow matches then allow     
23    Order Deny,Allow
24    Deny from all
25    Allow from none
26</IfModule>
27
28# Apache >= 2.3
29<IfModule mod_authz_core.c>
30 
31  # Which has the compatibility module, we will have to use
32  #  this also to make sure that is denied in case the
33  #  vhose includes old rules too which would override
34  #  the new Require directives
35  <IfModule mod_access_compat.c>
36    Order Deny,Allow
37    Deny from all
38    Allow from none
39  </IfModule>
40 
41  # Finally Apache >= 2.3 properly (why did they make this so confusing)
42  <RequireAny>
43    # Deny everybody by default
44    Require all denied
45  </RequireAny>
46</IfModule>
Note: See TracBrowser for help on using the repository browser.