Task #91505: Disallow using fileadmin and co. for the storage of e.g. .php files - TYPO3 Core - TYPO3 Forge

Actions

Copy link

Task #91505

open

Disallow using fileadmin and co. for the storage of e.g. .php files

Added by Simon Gilli almost 4 years ago. Updated over 3 years ago.

Status:

Accepted

Priority:

Should have

Assignee:

Simon Gilli

Category:

Frontend

Target version:

Candidate for Major Version

Start date:

2020-05-27

Due date:

% Done:

Estimated time:

TYPO3 Version:

PHP Version:

Tags:

Complexity:

medium

Sprint Focus:

Description

Since years it's suggested to use sitepackages or normal extension for e.g. .php files and co. and not longer use the fileadmin folder for this type of files.

The default .htaccess (and webconf) should include a directive to block the access to this files by default.

See also discussion at Slack:
https://typo3.slack.com/archives/C0K5MU94J/p1590567620046600
https://typo3.slack.com/archives/C0K5MU94J/p1590569590049700

History
Property changes

Actions

Copy link

Updated by Benni Mack over 3 years ago

Target version changed from 11.0 to Candidate for Major Version

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

TYPO3 Core

Custom queries

Watchers (2)

Task #91505

Disallow using fileadmin and co. for the storage of e.g. .php files

Updated by Benni Mack over 3 years ago