Submitted by SteveHeinsch on Mon, 05/16/2011 - 19:35
When using the Protected Directories function, it creates the htusers file in web root which is publicly readable via browser. Shouldn't this be disallowed or (better) put in their home dir and not the public web dir?
order allow,deny deny from all
Status:
Closed (fixed)
Comments
Submitted by JamieCameron on Mon, 05/16/2011 - 23:23 Comment #1
Thanks for pointing this out .. I will add protection for that file in the next release.
Submitted by Issues on Tue, 05/31/2011 - 04:24 Comment #2
Automatically closed -- issue fixed for 2 weeks with no activity.