Feature #8981
Security/Performance: Provide Webserver Configuration file for common webservers - do not use .htaccess
| Status: | New | Start date: | 2010-07-21 | |
|---|---|---|---|---|
| Priority: | Could have | Due date: | ||
| Assigned To: | - | % Done: | 0% |
|
| Category: | - | |||
| Target version: | - | |||
| PHP Version: | Complexity: | |||
| Has patch: |
Description
For Security, Performance and Compatibility reasons there should be (perhaps optionally) the possibility to let the flow3 CLI generate a Configuration File for all common Webservers like Apache, and delete then the .htaccess file.
The advantages would be:
- Even if it would be possible to write files like '.htaccess' into the public document directory of the webserver there would be no security issue then.
- Apache would perform better because 'AllowOverride' could be set to 'None'. So Apache has not to recursively look for a .htaccess file.
- '.htaccess' is Apache specific and should not be there if not needed.
Related issues