[SECURITY] Bug 367071: mod_perl initialization script forgets to allow .htaccess files to prohibit file access.

r=mkanat, a=mkanat
author: justdave%bugzilla.org <> 2007-02-03 06:23:23 +0000
committer: justdave%bugzilla.org <> 2007-02-03 06:23:23 +0000
commit: e4d105240ca6ecb943d414bf2747979870bea2f7 (patch)
tree: 665c9ba1f7e3fc5f09efc4ece4484e65028e2f2f /mod_perl.pl
parent: Bug 367674: [SECURITY] XSS when reading Atom feeds due to unescaped HTML (diff)
download: bugzilla-e4d105240ca6ecb943d414bf2747979870bea2f7.tar.gz
bugzilla-e4d105240ca6ecb943d414bf2747979870bea2f7.tar.bz2
bugzilla-e4d105240ca6ecb943d414bf2747979870bea2f7.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/mod_perl.pl b/mod_perl.pl
index b5080827c..6c01d8e88 100644
--- a/mod_perl.pl
+++ b/mod_perl.pl
@@ -56,6 +56,7 @@ my $conf = <<EOT;
     PerlCleanupHandler  Bugzilla::ModPerl::CleanupHandler
     PerlOptions +ParseHeaders
     Options +ExecCGI
+    AllowOverride Limit
     DirectoryIndex index.cgi index.html
 </Directory>
 EOT
author	justdave%bugzilla.org <>	2007-02-03 06:23:23 +0000
committer	justdave%bugzilla.org <>	2007-02-03 06:23:23 +0000
commit	e4d105240ca6ecb943d414bf2747979870bea2f7 (patch)
tree	665c9ba1f7e3fc5f09efc4ece4484e65028e2f2f /mod_perl.pl
parent	Bug 367674: [SECURITY] XSS when reading Atom feeds due to unescaped HTML (diff)
download	bugzilla-e4d105240ca6ecb943d414bf2747979870bea2f7.tar.gz bugzilla-e4d105240ca6ecb943d414bf2747979870bea2f7.tar.bz2 bugzilla-e4d105240ca6ecb943d414bf2747979870bea2f7.zip