Anonymous | Login | Signup for a new account | 2024-03-29 10:10 CDT |
Main | My View | View Issues | Change Log | Roadmap | Docs | Wiki | Repositories |
View Revisions: Issue #947 | [ Back to Issue ] | ||
Summary | 0000947: Create new folder with restricted access from Web | ||
Revision | 2011-05-19 16:18:03 by Dmitry | ||
Description | Currently most of the logs and debug info can be accesses via Web which is high security risk. To address this we need to create a new folder under "/system" with restricted access from Web. Folder name will be ".restricted", it will have 777 permissions and will be used for: 1. ALL type of logs (gateways, shipping, PHP, Web requests) 2. Debug files NOTES: 1. all of above Logs should be checked and updated to use this NEW folder. 2. add .htaccess which will deny any access to that folder. |
||
Revision | 2011-05-18 13:16:38 by Dmitry | ||
Description | Currently most of the logs and debug info can be accesses via Web which is high security risk. To address this we need to create a new folder under "/system" with restricted access from Web. Folder name will be ".restricted", it will have 777 permissions and will be used for: 1. ALL type of logs (gateways, shipping, PHP, Web requests) 2. Debug files Note that all of above Logs should be checked and updated to use this NEW folder. |
||
Revision | 2011-05-18 13:16:38 by Dmitry | ||
Additional Information | New setting in config.php RestrictedPath = "/system/.restricted" | ||
Revision | 2011-04-04 11:59:50 by Dmitry | ||
Additional Information |
Main | My View | View Issues | Change Log | Roadmap | Docs | Wiki | Repositories |
Web Development by Intechnic In-Portal Open Source CMS |