Fixed
Status Update
No update yet.
Comments
di...@andric.com
Indeed, that folder is visible and should probably be excluded in the web server configuration. At first sight, it does not look like there is much interesting information in there, as it seems a rather vanilla checkout, but we should probably inform the website maintainers.
di...@andric.com
FYI, I emailed llvm-admin, and CC'd Tanya Lattner.
ma...@google.com
[Empty comment from Monorail migration]
ma...@google.com
[Empty comment from Monorail migration]
kr...@arm.com
Looping in Mike Edwards, who I believe is one of the administrators of the LLVM web server.
me...@llvm.org
Fixed. Thank you for the notification. Please let us know if there is anything else we should be aware of. We appreciate the assistance.
Best,
Mike
Best,
Mike
ma...@google.com
Confirm fixed. Thanks!
Description
Leaking your .git folder.A attacker will retrieve your site's source code etc to exploit a lot.Restrict from accessing the folder.Make changes to your .htaccess file.