DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=44068>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=44068 [EMAIL PROTECTED] changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED Resolution| |INVALID ------- Additional Comments From [EMAIL PROTECTED] 2007-12-12 14:21 ------- (In reply to comment #1) > If you request a directory, Apache tries appending all the DirectoryIndex file > names to serve an index page. The RedirectMatch check is done after that. It > probably should be done before that, so that unexpected matches don't occur. Not quite. The DirectoryIndex causes a subrequest, and it's the subrequest that gets redirected. All as expected. If we "fix" this, we have a gaping security hole, where a file matching your RedirectMatch - and therefore maybe presumed secret - would then be served. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
