Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-72132

Handle files with a . inside pluginfile paths correctly

    XMLWordPrintable

Details

    • Bug
    • Status: Open
    • Minor
    • Resolution: Unresolved
    • 3.11.1
    • None
    • Administration
    • MOODLE_311_STABLE
    • Easy

    Description

      Split from MDL-69877, found via https://moodle.org/mod/forum/discuss.php?d=424455

      We want to block all hidden files from being served, but we don't want this to affect files inside moodle using the file api.

      There should be a check for this, and the wiki fixed:

      https://docs.moodle.org/311/en/Apache#Hiding_internal_paths

       

      Attachments

        Issue Links

          Discovered while testing

          Improvement - An enhancement to an existing Moodle feature. MDL-69333 Reduce ability to fingerprint a server with a htaccess-dist / nginx file / docs

          • Minor - Minor loss of function where workaround is possible
          • Closed
          has a non-specific relationship to

          Task - A task that needs to be completed. Tasks usually refer to work that must be done outside the product. MDL-69877 Set up a security.txt file in Moodle LMS

          • Minor - Minor loss of function where workaround is possible
          • Closed

          Activity

            People

              Unassigned Unassigned
              brendanheywood Brendan Heywood
              David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo
              Votes:
              2 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated: