Security/Performance: Provide Webserver Configuration file for common webservers - do not use .htaccess
For Security, Performance and Compatibility reasons there should be (perhaps optionally) the possibility to let the flow3 CLI generate a Configuration File for all common Webservers like Apache, and delete then the .htaccess file.
The advantages would be:
- Even if it would be possible to write files like '.htaccess' into the public document directory of the webserver there would be no security issue then.
- Apache would perform better because 'AllowOverride' could be set to 'None'. So Apache has not to recursively look for a .htaccess file.
- '.htaccess' is Apache specific and should not be there if not needed.
No data to display