Re: Security issue when defining wrong location directive in Apache
From: Phil Endecott <spam_from_subversion_users_at_chezphil.org>
Date: 2006-01-17 01:32:43 CET
Sander wrote:
> I had some repositories under my https-root ..
I assume DocumentRoot /var/www
> <Location /svn>
No it doesn't look OK. You have put your AuthUserFile inside your
Your issue with your subversion repository is essentially the same.
Don't put things under your DocumentRoot unless you want to serve them.
--Phil.
---------------------------------------------------------------------
|
This is an archived mail posted to the Subversion Users mailing list.
This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.