N°2435.3 Security hardening: Avoid direct access to lib directory

lib/.htaccess

@@ -0,0 +1,13 @@
+# Apache 2.4
+<ifModule mod_authz_core.c>
+Require all denied
+</ifModule>
+
+# Apache 2.2
+<ifModule !mod_authz_core.c>
+deny from all
+Satisfy All
+</ifModule>
+
+# Apache 2.2 and 2.4
+IndexIgnore *

lib/README.md

@@ -1,4 +0,0 @@
-## Libraries structure
-
-* `/lib/composer-vendor/*` Libs managed by the composer.json file.
-* `/lib/*` Libs managed manually by us. Some have been forked, some patched. Might move to composer eventually.

lib/web.config

@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<configuration>
+  <system.web>
+          <authorization>
+                  <deny users="*" /> <!-- Denies all users -->
+          </authorization>
+  </system.web>
+</configuration>