N°2435.3 Security hardening: Avoid direct access to lib directory

2026-02-12 23:14:18 +01:00 · 2019-08-13 10:52:15 +02:00
parent bb4c8ea52d
commit 83e3321a48
3 changed files with 21 additions and 4 deletions
--- a/lib/.htaccess
+++ b/lib/.htaccess
@@ -0,0 +1,13 @@
+# Apache 2.4
+<ifModule mod_authz_core.c>
+Require all denied
+</ifModule>
+
+# Apache 2.2
+<ifModule !mod_authz_core.c>
+deny from all
+Satisfy All
+</ifModule>
+
+# Apache 2.2 and 2.4
+IndexIgnore *
--- a/lib/README.md
+++ b/lib/README.md
@@ -1,4 +0,0 @@
-## Libraries structure
-
-* `/lib/composer-vendor/*` Libs managed by the composer.json file.
-* `/lib/*` Libs managed manually by us. Some have been forked, some patched. Might move to composer eventually.
--- a/lib/web.config
+++ b/lib/web.config
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<configuration>
+  <system.web>
+          <authorization>
+                  <deny users="*" /> <!-- Denies all users -->
+          </authorization>
+  </system.web>
+</configuration>