[packages/apache] Block env files by default.
arekm
arekm at pld-linux.org
Sun May 24 20:25:28 CEST 2026
commit ab1de82426bc61e66efc2ff4f23a2ef8f404508a
Author: Arkadiusz Miśkiewicz <arekm at maven.pl>
Date: Sun May 24 20:25:08 2026 +0200
Block env files by default.
apache-common.conf | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
---
diff --git a/apache-common.conf b/apache-common.conf
index c354dee..cbd4cee 100644
--- a/apache-common.conf
+++ b/apache-common.conf
@@ -30,7 +30,8 @@ DocumentRoot "/home/services/httpd/html"
# - .htaccess and .htpasswd files
# - backup files from being viewed
# - PHP's .user.ini
-<FilesMatch "^(\.ht.*|\.user\.ini|.*~|.*,v)$">
+# - .env files (may contain secrets)
+<FilesMatch "^(\.ht.*|\.user\.ini|\.env.*|.*~|.*,v)$">
<IfModule mod_authz_host.c>
Require all denied
</IfModule>
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/apache.git/commitdiff/ab1de82426bc61e66efc2ff4f23a2ef8f404508a
More information about the pld-cvs-commit
mailing list