access_allow directive for lighttpd
Patch to add an access_allow directive to lighttpd where everything not
listed is denied (usefull, for instance to only allow, .jpg, .gif, on
static servers, blocking that way the .inc, .conf, .php, .php~, etc. that
may me lurking).
The patch is as simple as it can get and is not intrusive in any way.
It would be nice not having to patch lighttpd in each upgrade and it may
be useful to someone else.
[mod_access] new directive url.access-allow (fixes #1421)
url.access-allow is list of allowed url suffixes (e.g. file extensions)
If url.access-allow has been set, then deny any URL that does not match
the explicitly listed suffixes.
"access_allow directive for lighttpd"
Also available in: Atom