You are not logged in.
- Topics: Active | Unanswered
#1 2010-05-18 00:58:39
- thetrivialstuff
- Member
- Registered: 2006-05-10
- Posts: 191
phpmyadmin (and presumably other webapps packages)
In my opinion, I would prefer that the .htaccess file containing 'deny from all' not be included in these packages. You already have to add /usr/share/webapps/<appname> to your server config; that should be enough of a "yes I really meant to install this" barrier to prevent people from accidentally granting web access to mysql or suchlike.
Trying to find out why I'm still getting access denied (after all of the config looks OK) and then finding and deleting that .htaccess file is not productive.
However, since I believe there really are idiots out there who will be saved by the .htaccess file, I suggest a compromise -- include this comment in apache.example.conf:
#There is also an .htaccess file to remove! Look in /etc/webapps/<appname>
#(and remove the symlink from /usr/share/<appname>)
I don't think there's much harm in giving hints to people who read the example file.
Out of curiousity, what's the expected way for users to find out about the .htaccess?
~Felix.
Offline
#2 2010-05-18 02:20:11
- Daenyth
- Forum Fellow
- From: Boston, MA
- Registered: 2008-02-24
- Posts: 1,244
Re: phpmyadmin (and presumably other webapps packages)
Packaging webapps is almost pointless anyway. I'm kind of surprised people bother.
[git] | [AURpkgs] | [arch-games]
Offline
#3 2010-05-18 17:21:09
- thetrivialstuff
- Member
- Registered: 2006-05-10
- Posts: 191
Re: phpmyadmin (and presumably other webapps packages)
Packaging webapps is almost pointless anyway. I'm kind of surprised people bother.
I have to agree with you there :)
Offline