0
我想通過在httpd.conf文件中使用「Allowoverride FileInfo」來解決安全問題,該文件允許htaccess文件(我的htaccess文件只是在zend2中定義的重定向)。我爲我的項目使用zend框架2.x(就像一些購物車網站)。Apache Allowoverride FileInfo安全處理
I have researched and I got the following information.
1. Better to place "Allowoverride FileInfo" inside "Directory" directive for better performance.
2. Use "AccessFileName .config" instead of allowing .htaccess we can use .config, which might help some way security.
3. Just copiying the htaccess code to httpd.conf file(for which there is no security risk, as "Allowoverride None" is used).
但是沒有關於安全問題,這是主要關心的問題。
Could somebody help me with information if .htaccess file is used.
1. What are the security measures I have to take care ?.
2. Is there a chance of intrusion?.
謝謝, Dilip。