Secure the server: prevent the users from browsing/getting files from the conf directories.

With Apache, it is still a must to enable htaccess with the spec "AllowOverride All". The index.php files are here to prevent from browsing whatever the HTTP server config.
2026-02-12 23:14:18 +01:00 · 2019-03-08 09:31:59 +01:00
parent 76c3f640db
commit cb7c382b99
4 changed files with 29 additions and 1 deletions
--- a/conf/index.php
+++ b/conf/index.php
@@ -0,0 +1,2 @@
+<?php
+echo 'Access denied';