• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

File Extensions

#1
I am trying to whitelist file extensions that should be served via web and block anything else...right now, these are all extensions found in the document root:

conf
css
data
default
DS_Store
eot
gif
htaccess
html
ico
jpg
js
json
LESSER
php
png
svg
swf
ttf
txt (other than robots.txt, the rest are license files)
woff
woff2
wsdl
xml
xsd

and these are the extension I am planning to whitelist:
(css, gif, html, ico, jpg, js, json (not sure about this), php, png, svg, swf, ttf, woff, woff2, xml, xsd).

Please let me know if I missed something that might break functionality.



Thanks
 
Last edited: