[Vtigercrm-developers] If your contact images are working then you have a big security problem
apcloic
apcloic at gmail.com
Fri Dec 4 13:30:42 GMT 2015
Hi,
I've just had a little issue with the configuration recommended on
stackoverflow, image file extension was written in capital letters (*.JPG)
and so the image can't be reached.
In order to be case insensitive, .htaccess should be :
deny from all
<FilesMatch "(?i)\.(gif|jpe?g|png)$">
Order allow,deny
Allow from all
</FilesMatch>
Regards,
--
View this message in context: http://vtiger-crm.2324883.n4.nabble.com/Vtigercrm-developers-If-your-contact-images-are-working-then-you-have-a-big-security-problem-tp15598p17933.html
Sent from the vtigercrm-developers mailing list archive at Nabble.com.
More information about the vtigercrm-developers
mailing list