This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
security [2019/11/11 15:19] k2patel created |
security [2019/11/11 15:26] k2patel [cgi-bin precaution] |
||
---|---|---|---|
Line 12: | Line 12: | ||
RewriteRule .*$ - [F,L] | RewriteRule .*$ - [F,L] | ||
</Directory> | </Directory> | ||
+ | </code> | ||
+ | |||
+ | ==== cgi-bin precaution ==== | ||
+ | Make sure none of the configuration files get printed as pain text. | ||
+ | <code bash> | ||
+ | <FilesMatch ".+(\.pm|\.conf|\.htaccess|\.gitignore|config)$"> | ||
+ | Require all denied | ||
+ | </FilesMatch> | ||
+ | </code> | ||
+ | |||
+ | ==== Anything start with .(dot) ==== | ||
+ | Disable all files and folder start with .dot | ||
+ | <code bash> | ||
+ | <DirectoryMatch "^\.|\/\."> | ||
+ | Require all denied | ||
+ | </DirectoryMatch> | ||
+ | |||
+ | <LocationMatch "\/\."> | ||
+ | Require all denied | ||
+ | </LocationMatch> | ||
</code> | </code> |