Changeset: 75e96fcd3e67 https://sourceforge.net/p/mrbs/hg-code/ci/75e96fcd3e676f44cf0d6c8ac2e4704110b1972a Author: John Beranek <jbera...@users.sourceforge.net> Date: Wed Mar 01 20:53:13 2017 +0000 Log message:
Moved MRBS's .htaccess file into 2 separate example .htaccess files for different versions of Apache. The old .htaccess caused 500 errors with a stock Apache 2.4 configuration. diffstat: INSTALL | 13 +++++++------ web/.htaccess | 10 ---------- web/.htaccess-apache-2.4 | 9 +++++++++ web/.htaccess-apache-pre-2.4 | 10 ++++++++++ 4 files changed, 26 insertions(+), 16 deletions(-) diffs (64 lines): diff -r d47a9f85fb60 -r 75e96fcd3e67 INSTALL --- a/INSTALL Wed Mar 01 18:16:52 2017 +0000 +++ b/INSTALL Wed Mar 01 20:53:13 2017 +0000 @@ -484,12 +484,13 @@ database login and password use a ".php" extension like config.inc.php. See your web server documentation on how to do this. -There is an Apache .htaccess file included, but Apache might ignore it because -of the "AllowOverride None" in your httpd.conf. Either change "AllowOverride -None" to "AllowOverride Limit", create a new <Directory> entry with the -contents of the .htaccess file in it, or add the contents of the .htaccess -to httpd.conf where it says "<Files ~ "^\.ht">". And then read the Apache -docs five or six times, until you know what you just did. +There are example Apache .htaccess files included, for different versions of +Apache, but Apache might ignore a .htaccess file in your MRBS directory +due to the setting of the "AllowOverride" directive in your web server +configuration. Either change "AllowOverride None" to "AllowOverride Limit", +or create a new <Directory> entry with the contents of the .htaccess example +file in it for your MRBS installation. Then read the Apache docs five or six +times, until you know what you just did. You may protect "config.inc.php" to only allow the web server to read it. For example: # chown httpd config.inc.php; chmod 400 config.inc.php diff -r d47a9f85fb60 -r 75e96fcd3e67 web/.htaccess --- a/web/.htaccess Wed Mar 01 18:16:52 2017 +0000 +++ /dev/null Thu Jan 01 00:00:00 1970 +0000 @@ -1,10 +0,0 @@ -<Files ~ "\.inc$"> - Order allow,deny - Deny from all -</Files> - -# Some web servers will use mod_expires and turn on caching for -# pages that they think should be cached. Occasionally these cache -# instructions will override MRBS's own cache instructions. As some -# MRBS pages should definitely not be cached, we disable ExpiresActive. -ExpiresActive Off diff -r d47a9f85fb60 -r 75e96fcd3e67 web/.htaccess-apache-2.4 --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/web/.htaccess-apache-2.4 Wed Mar 01 20:53:13 2017 +0000 @@ -0,0 +1,9 @@ +<Files ~ "\.inc$"> + Require all denied +</Files> + +# Some web servers will use mod_expires and turn on caching for +# pages that they think should be cached. Occasionally these cache +# instructions will override MRBS's own cache instructions. As some +# MRBS pages should definitely not be cached, we disable ExpiresActive. +ExpiresActive Off diff -r d47a9f85fb60 -r 75e96fcd3e67 web/.htaccess-apache-pre-2.4 --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/web/.htaccess-apache-pre-2.4 Wed Mar 01 20:53:13 2017 +0000 @@ -0,0 +1,10 @@ +<Files ~ "\.inc$"> + Order allow,deny + Deny from all +</Files> + +# Some web servers will use mod_expires and turn on caching for +# pages that they think should be cached. Occasionally these cache +# instructions will override MRBS's own cache instructions. As some +# MRBS pages should definitely not be cached, we disable ExpiresActive. +ExpiresActive Off ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot _______________________________________________ Mrbs-commits mailing list Mrbs-commits@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mrbs-commits