[mapserver-users] MS4W 2.3 / Apache security question using deflate
Jeff McKenna
jmckenna at gatewaygeomatics.com
Fri Oct 17 11:50:58 PDT 2008
Mark Volz wrote:
> Hello,
>
>
>
> When I upgraded to MS4W, I noticed the deflate (compression) module was
> not working. I added the following lines in http.conf, and I was just
> wondering if it was a security concern or not.
>
>
>
>
>
> ####NEW LINES###
>
> <Location />
>
> SetOutputFilter DEFLATE
>
> </Location>
>
> ###EXISTING CODE#####
>
> <Location "/cgi-bin">
>
> Options None
>
> Order allow,deny
>
> Allow from all
>
> </Location>
>
> <Location "/fcgi-bin">
>
> # The following line activates the fastCGI script to all files in
> location
>
> SetHandler fcgid-script
>
> Options None
>
> Order allow,deny
>
> Allow from all
>
> </Location>
>
> <Directory "C:/ms4w/tmp/">
>
> AllowOverride None
>
> Options None
>
> Order allow,deny
>
> Allow from all
>
> </Directory>
>
>
mod_deflate is not enabled by default in MS4W's Apache. I am not very
familiar with this module, but for sure you must first uncomment the
appropriate LoadModule line in httpd.conf (~line#87) before using the
DEFLATE settings.
--
Jeff McKenna
FOSS4G Consulting and Training Services
http://www.gatewaygeomatics.com/
More information about the MapServer-users
mailing list