DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=29090>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=29090 [EMAIL PROTECTED] changed: What |Removed |Added ---------------------------------------------------------------------------- Severity|normal |critical ------- Additional Comments From [EMAIL PROTECTED] 2006-05-26 21:55 ------- There should be an option which a) can not be disabled from httpd.conf b) allows to mark a directory as "care for the last extension only". This will allow the Olympian Gods of Apache Developers to play with as many extensions they want and will allow Joe Sixpack to have a secure site. You implemented MaxRedirects to stop the blooding from ModRewrite. Now, this is a security hole and a lot of sites are bleeding. The band aid is simple. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
