framework/sage
Template
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Accidentally removed with be2e203cc5

Browse Source
This commit is contained in:
Ben Word
2013-04-30 21:07:30 -05:00
parent 553dc1cfb7
commit aa0311741d
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
lib/h5bp-htaccess
View File

@@ -356,6 +356,13 @@ AddCharset utf-8 .atom .css .js .json .rss .vtt .xml
Satisfy All Satisfy All
</FilesMatch> </FilesMatch>
# Block access to WordPress files that reveal version information.
<FilesMatch "^(wp-config\.php|readme\.html|license\.txt)">
Order allow,deny
Deny from all
Satisfy All
</FilesMatch>
# If your server is not already configured as such, the following directive # If your server is not already configured as such, the following directive
# should be uncommented in order to set PHP's register_globals option to OFF. # should be uncommented in order to set PHP's register_globals option to OFF.
# This closes a major security hole that is abused by most XSS (cross-site # This closes a major security hole that is abused by most XSS (cross-site