On 2010/03/13 03:19, Ozgur Kazancci wrote: > > Yes we are, while we are at it we can ship an http.conf file that wil > > only listen on port 8000 on localhost when the daemon comes up as > > well, and that would be super obscure as well, and it would only read > > index files ending in .HolyFuck, and we'd ship a mime types > > where HolyFuck was html, so people accidentally didn't put html files > > in there without changing the mime types, etc etc. etc. > > No, we are not. You're still talking about something else. > > Disabled Indexes: "Don't show the content of EVERY single folder" > = Security First = Default => OpenBSD
should we also disable the LIST command in ftpd by default? of course not. why would you copy files to a publically accessible directory and make them world-readable if you don't want to allow access to them?
