Closed (fixed)
Project:
Backup and Migrate
Version:
6.x-1.2
Component:
Documentation
Priority:
Normal
Category:
Task
Assigned:
Unassigned
Reporter:
Created:
17 Mar 2009 at 14:29 UTC
Updated:
8 May 2010 at 03:08 UTC
Unfortunately lighttpd does not support .htaccess, so the current security configuration of the module does not work with it. As far as I know there is no way to do it automatically either (with a file in the directory), so the following should be put by the user to the global lighttpd configuration file:
$HTTP["url"] =~ "/files/backup_migrate/" {
url.access-deny = ("")
}
Could you add this to the documentation?
Also, when the security test fails, it would be very useful to include this information (fancy way: only after testing if the webserver name matches lighttpd), or alternatively include a link to the relevant documentation.
Comments
Comment #1
ronan commentedThanks for the info. I'll be sure to add this to the readme when I get a chance. I'm not going to add it to the module itself since I don't use lighttpd and I don't want to add code without testing it, but this info should be enough to point people in the right direction.
Thanks again
R
Comment #2
ronan commented