On Thu, 7 Feb 2002, Tim Noll wrote: > What sort of security problem?
Without directory indicies anything I upload to my webserver is private. Unless they can guess where it is and the file name, it's as secure as using basic http authenticion (since both systems rely solely on a secret that's being transmitted in plain text)[1] With directory indicies on people can look for anything they want. Including files that may help them compromise the server. Later. Mark. [1] proxy logging aside. -- Mark Fowler Technology Developer http://www.indicosoftware.com/
