diff options
author | justdave%syndicomm.com <> | 2003-04-25 06:17:29 +0200 |
---|---|---|
committer | justdave%syndicomm.com <> | 2003-04-25 06:17:29 +0200 |
commit | 901c2d3a8ad01b13111145ec63234f3bd6f02871 (patch) | |
tree | cfdf672df926572faac9cfe570767fce56c8e65c /checksetup.pl | |
parent | e9841817aa2bb7aef16e6499a9db2d5254a31c5f (diff) | |
download | bugzilla-901c2d3a8ad01b13111145ec63234f3bd6f02871.tar.gz bugzilla-901c2d3a8ad01b13111145ec63234f3bd6f02871.tar.xz |
Bug 197153: Fix for insecure temporary filename handling.
Patch by Brad Baetz <bbaetz@acm.org>
r= justdave, gerv
a= justdave
Diffstat (limited to 'checksetup.pl')
-rwxr-xr-x | checksetup.pl | 7 |
1 files changed, 3 insertions, 4 deletions
diff --git a/checksetup.pl b/checksetup.pl index c04227215..f67042599 100755 --- a/checksetup.pl +++ b/checksetup.pl @@ -873,14 +873,13 @@ END # Restrict access to .dot files to the public webdot server at research.att.com # if research.att.com ever changed their IP, or if you use a different # webdot server, you'll need to edit this -<FilesMatch ^[0-9]+\.dot$> +<FilesMatch \.dot$> Allow from 192.20.225.10 Deny from all </FilesMatch> -# Allow access by a local copy of 'dot' to .png, .gif, .jpg, and -# .map files -<FilesMatch ^[0-9]+\.(png|gif|jpg|map)$> +# Allow access to .png files created by a local copy of 'dot' +<FilesMatch \.png$> Allow from all </FilesMatch> |