开发者

Modifying apache to prevent public accessibility of .git folder

问答 作者:

I read here that the ".git folder is at the root level of the web site, and is probably publicly accessible. To protect the folder and prevent unwanted clones of the repository, add the following to your top-level .htaccess file to forbid web access:"

# deny access to the top-level git repository:
RewriteEngine On
RewriteRule \.git - [F,L]

First of all, THANKS Joe Maller!

In my virtual host file i have the RewriteEngine On command with the following specs:

<VirtualHost *:80>
        ...
        RewriteEngine On
        RewriteCond %{SERVER_PORT} !443
        RewriteRule (.*) https://www.mydomain.com/ [R]
</VirtualHost>

Could i just add the git rewrite rule following the rewrite rule for ssl like so:

<VirtualHost *:80>
        ...
        RewriteEngine On
        RewriteCond %{SERVER_PORT} !443
        RewriteRule (.*) https://www.mydomain.com/ [R]
        Re开发者_如何转开发writeRule \.git - [F,L]
</VirtualHost>

Thanks!

That should work. It's easy to test to make sure, though. Just try to browse to http://www.mydomain.com/.git and see if it works.

继续阅读:gitworkflow

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9