Actions
Task #91505
openDisallow using fileadmin and co. for the storage of e.g. .php files
Status:
Accepted
Priority:
Should have
Assignee:
Category:
Frontend
Target version:
Start date:
2020-05-27
Due date:
% Done:
0%
Estimated time:
TYPO3 Version:
11
PHP Version:
Tags:
Complexity:
medium
Sprint Focus:
Description
Since years it's suggested to use sitepackages or normal extension for e.g. .php files and co. and not longer use the fileadmin folder for this type of files.
The default .htaccess (and webconf) should include a directive to block the access to this files by default.
See also discussion at Slack:
https://typo3.slack.com/archives/C0K5MU94J/p1590567620046600
https://typo3.slack.com/archives/C0K5MU94J/p1590569590049700
Updated by Benni Mack almost 4 years ago
- Target version changed from 11.0 to Candidate for Major Version
Actions