Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

flatfile sec #3

Open
ghost opened this issue Mar 24, 2019 · 1 comment
Open

flatfile sec #3

ghost opened this issue Mar 24, 2019 · 1 comment
Labels
question Further information is requested

Comments

@ghost
Copy link

ghost commented Mar 24, 2019

If you make a new .htaccess file and simply put the following in it RedirectMatch 404 .posts$
in apache anyway, it makes it so no one can read the .posts db from a browser even if the .posts file is set to 777. Just thought maybe you would want to put the one line .htaccess file in the flatfile db dir? Or maybe include the code in the readme to teach ppl how to make the .htaccess file and put it in the db dir?

Also, great job! You have the best ver of tinyib by far! Any chance to make a stylesheet dropdown so one can change the stylesheet? I am going to use your fork on my sites because it looks nice on mobile. It seems to run fine on latest versions of php.

Lastly, as the orig tinyib is for apache, and needs the .htaccess I was wondering what you think about using nginx and php7.3-fpm instead of apache. I figured to be safe maybe one should stick to apache?

@SthephanShinkufag
Copy link
Owner

SthephanShinkufag commented Apr 10, 2020

There was warning in Readme.md:

Access to ./inc/flatfile/ should be denied.

But thanks for the advice, sorry to react so late.
As for Nginx, I'm not an expert at all in this, unfortunately.

@SthephanShinkufag SthephanShinkufag added the question Further information is requested label Sep 20, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
question Further information is requested
Projects
None yet
Development

No branches or pull requests

1 participant