Juste_me__
Member
I am trying to whitelist file extensions that should be served via web and block anything else...right now, these are all extensions found in the document root:
conf
css
data
default
DS_Store
eot
gif
htaccess
html
ico
jpg
js
json
LESSER
php
png
svg
swf
ttf
txt (other than robots.txt, the rest are license files)
woff
woff2
wsdl
xml
xsd
and these are the extension I am planning to whitelist:
(css, gif, html, ico, jpg, js, json (not sure about this), php, png, svg, swf, ttf, woff, woff2, xml, xsd).
Please let me know if I missed something that might break functionality.
Thanks
conf
css
data
default
DS_Store
eot
gif
htaccess
html
ico
jpg
js
json
LESSER
php
png
svg
swf
ttf
txt (other than robots.txt, the rest are license files)
woff
woff2
wsdl
xml
xsd
and these are the extension I am planning to whitelist:
(css, gif, html, ico, jpg, js, json (not sure about this), php, png, svg, swf, ttf, woff, woff2, xml, xsd).
Please let me know if I missed something that might break functionality.
Thanks
Last edited: