Drupal: does these lines remove .htaccess security issues?

Question

Drupal: does these lines remove .htaccess security issues?

I had to comment on these lines from htaccess files in my main Drupal folder and in the sites folder

# Don't show directory listings for URLs which map to a directory. #Options -Indexes # Follow symbolic links in this directory. #Options +FollowSymLinks

... so as not to get 500 internal errors on the new server.

Can I leave them without comment or will I have security problems?

ps. I also installed all the contents in folder 777. Is this normal?

thanks

+4

drupal drupal-6

aneuryzm May 17, '10 at 12:32

source share

2 answers

This may be a problem - a potential attacker knows exactly which modules you have on your site and which versions. Therefore, if you do not update your modules regularly when they have security releases, your site will be easily accessible.

+2

mmartinov May 17, '10 at 13:46

source share

Amy b · Accepted Answer · 2010-05-17T12:34:41+0000

You can leave a comment.

Options -Indexes just stops people from viewing the list of all the files in the directory, which is harmless anyway.

Drupal: does these lines remove .htaccess security issues?

More articles: