diff options
author | cyeh%bluemartini.com <> | 2001-03-10 06:37:22 +0000 |
---|---|---|
committer | cyeh%bluemartini.com <> | 2001-03-10 06:37:22 +0000 |
commit | 9d8a61ca77c9baf697942d63949ef0726e0e1a8f (patch) | |
tree | ec5c29344cad76ac624652e01b6646a5a20e4323 /README | |
parent | refix for 40603: Assumes user is coming from different page (diff) | |
download | bugzilla-9d8a61ca77c9baf697942d63949ef0726e0e1a8f.tar.gz bugzilla-9d8a61ca77c9baf697942d63949ef0726e0e1a8f.tar.bz2 bugzilla-9d8a61ca77c9baf697942d63949ef0726e0e1a8f.zip |
add notation about securing web installation
Diffstat (limited to 'README')
-rw-r--r-- | README | 7 |
1 files changed, 7 insertions, 0 deletions
@@ -275,6 +275,13 @@ If you are using a newer version of Apache, both of the above lines will be (or will need to be) in the httpd.conf file, rather than srm.conf or access.conf. +There are two critical directories and a file that should not be a served by +the HTTP server. These are the 'data' and 'shadow' directories and the +'localconfig' file. You should configure your HTTP server to not serve +content from these files. Failure to do so will expose critical passwords +and other data. Please see your HTTP server configuration manual on how +to do this. + 2. Installing the Bugzilla Files You should untar the Bugzilla files into a directory that you're |