Security Update 2004-12-02 makes changes to the httpd.conf file. After a successful update, the Apache configuration file will deny access to the following files:
*/..namedfork/data
*/..namedfork/rsrc
*/rsrc
rsrc
.ht* (case insensitive)
.ds_s* (case insensitive)
Warnings:
The configuration changes that block named-fork exposure apply only to the default webserver, apache1. If you’ve chosen to use Apache2, it’s recommended that you serve content from a [...]
Filed under: Apache, Hosting, Leopard, OSX, Servers | Tagged: HFS+, namedfork, rsrc, secure | Leave a Comment »
