summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorFrédéric Buclin <LpSolit@gmail.com>2012-08-30 20:15:07 +0200
committerFrédéric Buclin <LpSolit@gmail.com>2012-08-30 20:15:07 +0200
commit1ff417cbaa2905f64d4417290c4255080884ee02 (patch)
treef3c7558ee6c85927eb0988692c741277c6e7dc75
parent45d5c7b55454698410c402016072ccfbfa116888 (diff)
downloadbugzilla-1ff417cbaa2905f64d4417290c4255080884ee02.tar.gz
bugzilla-1ff417cbaa2905f64d4417290c4255080884ee02.tar.xz
Bug 785522: [SECURITY] Block access to templates in extensions/
r=glob a=LpSolit
-rw-r--r--.htaccess2
1 files changed, 1 insertions, 1 deletions
diff --git a/.htaccess b/.htaccess
index 27f478afd..3b464a475 100644
--- a/.htaccess
+++ b/.htaccess
@@ -1,5 +1,5 @@
# Don't allow people to retrieve non-cgi executable files or our private data
-<FilesMatch ^(.*\.pm|.*\.pl|.*localconfig.*)$>
+<FilesMatch (\.pm|\.pl|\.tmpl|localconfig.*)$>
deny from all
</FilesMatch>