Project

General

Profile

Bug #825

closed

url.access-deny ( ".ext" ) still serves "/file.ext/"

Added by Anonymous over 14 years ago. Updated over 13 years ago.

Status:
Fixed
Priority:
Normal
Category:
mod_access
Target version:
ASK QUESTIONS IN Forums:

Description

The summary says it all.

-- skoot

#1

Updated by Anonymous over 14 years ago

This isn's normal priority, this is critical!
The whole mod_access isn't worth anything while this bug exists...

-- pp

#2

Updated by Anonymous over 14 years ago

Also, banning {{{".ext/"}}} isn't enough, as the file will still be served for {{{"file.ext/a"}}}.

There is a workaround by setting a

{{{ "^.*\.inc.*$" => "404.html"}}}

rewrite rule.
However, this may lead to some side-effects (also banning {{{*.inca}}}, etc.), so the final rules that allow just what you want may get a bit complex.

-- pp

#3

Updated by jwmcglynn almost 14 years ago

I can't reproduce this bug on my production 1.4.11 server. Perhaps it is related to using rewrite rules?

#4

Updated by jan over 13 years ago

  • Status changed from New to Fixed
  • Resolution set to fixed

duplicate of #1230

it is fixed in 1.4.16

Also available in: Atom