Bug 186383 Checksetup leaves editor backups of localconfig accessible (revised)

r=jaypee a=justdave

Bug 186383 Checksetup leaves editor backups of localconfig accessible (revised)
1be7ce91 · bugreport%peshkin.net · 0e1c51a6 · 1be7ce91
Commit 1be7ce91 authored Dec 23, 2002 by bugreport%peshkin.net
Hide whitespace changes
Inline Side-by-side

Showing with 24 additions and 1 deletion

checksetup.pl checksetup.pl +24 -1

No files found.
--- a/checksetup.pl
+++ b/checksetup.pl
@@ -820,12 +820,35 @@ if ($my_create_htaccess) {
    open HTACCESS, ">.htaccess";
    print HTACCESS <<'END';
 # don't allow people to retrieve non-cgi executable files or our private data
-<FilesMatch ^(.*\.pl|localconfig|processmail|runtests.sh)$>
+<FilesMatch ^(.*\.pl|.*localconfig.*|processmail|runtests.sh)$>
  deny from all
 </FilesMatch>
+<FilesMatch ^(localconfig.js|localconfig.rdf)$>
+  allow from all
+</FilesMatch>
 END
    close HTACCESS;
    chmod $fileperm, ".htaccess";
+  } else {
+    # 2002-12-21 Bug 186383
+    open HTACCESS, ".htaccess";
+    my $oldaccess = "";
+    while (<HTACCESS>) {
+      $oldaccess .= $_;
+    }
+    close HTACCESS;
+    if ($oldaccess =~ s/\|localconfig\|/\|.*localconfig.*\|/) {
+      print "Repairing .htaccess...\n";
+      open HTACCESS, ">.htaccess";
+      print HTACCESS $oldaccess;
+      print HTACCESS <<'END';
+<FilesMatch ^(localconfig.js|localconfig.rdf)$>
+  allow from all
+</FilesMatch>
+END
+      close HTACCESS;
+    }
+
  }
  if (!-e "Bugzilla/.htaccess") {
    print "Creating Bugzilla/.htaccess...\n";