From e6acfe2ddff74715b097684bebf2d4ee50ff3f11 Mon Sep 17 00:00:00 2001 From: "timeless%mozdev.org" <> Date: Tue, 24 Jul 2007 23:22:01 +0000 Subject: Bug 345970 Avoid using the string 'the web' patch by jhulten@tragicallyleet.com r=timeless I've updated it to trunk r=lpsolit a=lpsolit --- docs/xml/security.xml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) (limited to 'docs/xml/security.xml') diff --git a/docs/xml/security.xml b/docs/xml/security.xml index 751f2edea..e7ea0f30c 100644 --- a/docs/xml/security.xml +++ b/docs/xml/security.xml @@ -1,5 +1,5 @@ - + Bugzilla Security @@ -57,7 +57,7 @@ You will need to set the option - in localconfig to the group your webserver runs + in localconfig to the group your web server runs as. This will allow ./checksetup.pl to set file permissions on Unix systems so that nothing is world-writable. @@ -137,7 +137,7 @@
Network Access - If MySQL and your webserver both run on the same machine and you + If MySQL and your web server both run on the same machine and you have no other reason to access MySQL remotely, then you should disable the network access. This, along with the suggestion in , will help protect your system from @@ -178,12 +178,12 @@ skip-networking There are many files that are placed in the Bugzilla directory - area that should not be accessible from the web. Because of the way + area that should not be accessible from the web server. Because of the way Bugzilla is currently layed out, the list of what should and should not be accessible is rather complicated. A quick way is to run - testserver.pl to check if your web server serves + testserver.pl to check if your web server serves Bugzilla files as expected. If not, you may want to follow the few - steps below. + steps below. -- cgit v1.2.3-24-g4f1b