diff options
| author | polo <ordipolo@gmx.fr> | 2026-01-12 20:17:20 +0100 |
|---|---|---|
| committer | polo <ordipolo@gmx.fr> | 2026-01-12 20:17:20 +0100 |
| commit | cefcba981d593b271fc28ff035f2be06ebeab923 (patch) | |
| tree | 5bfaabb0b80a13f949c2b5db9c193be371b486c9 /public/user_data/images-mini/.htaccess | |
| parent | 505cab0210e83bf62085b665abad0698a8d31352 (diff) | |
| download | cms-cefcba981d593b271fc28ff035f2be06ebeab923.tar.gz cms-cefcba981d593b271fc28ff035f2be06ebeab923.tar.bz2 cms-cefcba981d593b271fc28ff035f2be06ebeab923.zip | |
htaccess dans media fonctionnel avec php module apache ou fastCGI, htaccess dans les dossiers des images
Diffstat (limited to 'public/user_data/images-mini/.htaccess')
| -rw-r--r-- | public/user_data/images-mini/.htaccess | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/public/user_data/images-mini/.htaccess b/public/user_data/images-mini/.htaccess new file mode 100644 index 0000000..6055667 --- /dev/null +++ b/public/user_data/images-mini/.htaccess | |||
| @@ -0,0 +1,24 @@ | |||
| 1 | # désactive tout traitement par le handler apache (PHP, CGI, etc.) | ||
| 2 | SetHandler None | ||
| 3 | |||
| 4 | # scripts CGI (perl, python) | ||
| 5 | # complète le blocage du handler apache | ||
| 6 | Options -ExecCGI | ||
| 7 | # (php qui utilise mod_php (module apache) ou php-fpm (fastCGI) n'est pas concerné par cette règle) | ||
| 8 | |||
| 9 | # exploration des dossiers | ||
| 10 | Options -Indexes | ||
| 11 | |||
| 12 | # protection par whitelist | ||
| 13 | Require all denied | ||
| 14 | <FilesMatch "\.(jpe?g|png|gif|webp|tiff?)$"> | ||
| 15 | Require all granted | ||
| 16 | </FilesMatch> | ||
| 17 | |||
| 18 | |||
| 19 | ## moins utile | ||
| 20 | |||
| 21 | # interdire l'accès direct aux fichiers .htaccess et .htpasswd (déjà bloqués normallement) | ||
| 22 | <FilesMatch "^\.(htaccess|htpasswd)$"> | ||
| 23 | Require all denied | ||
| 24 | </FilesMatch> \ No newline at end of file | ||