Root directory listing = security hole - Apache Web servers - tribe.netTribe.net. Local ConnectionsRoot directory listing = security holefishhttp://ApacheServers.tribe.net/thread/3b043b88-c121-47d7-80a5-7e7074af26fd#dfbb32ce-ffba-463b-8ec7-172783563d182006-05-26T08:52:25Z2006-05-26T08:52:25ZHi!
I read an article recently about a bug in the windows version of Apache where Apache would list the root directory of the server when it would encounter something like this:
http://webserversname///////////////////////////////////////////////////////////
'The trailing slashes could cause Apache to list the root directory of the server'
So i'm not a Windows user when it comes to Apache, i've got it running under Redhat 8, and it's version 2.0.40, and guess what; it does the same thing!
Has anyone experienced this before? I guess i need newer software, but preferrably a patch if there is any.
Thanks..fish2006-05-26T08:52:25Z