summaryrefslogtreecommitdiffstats
path: root/docs/manual/mod/core.html.en
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-08-05 10:00:10 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-08-05 10:00:10 +0000
commit3204e211a1e248154ff95b90b6a7e29cfa92069c (patch)
tree79f901498145b63bf34e9981a013f3d9b52eafc2 /docs/manual/mod/core.html.en
parentAdding upstream version 2.4.61. (diff)
downloadapache2-upstream.tar.xz
apache2-upstream.zip
Adding upstream version 2.4.62.upstream/2.4.62upstream
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'docs/manual/mod/core.html.en')
-rw-r--r--docs/manual/mod/core.html.en20
1 files changed, 15 insertions, 5 deletions
diff --git a/docs/manual/mod/core.html.en b/docs/manual/mod/core.html.en
index ba049f3..f5efca3 100644
--- a/docs/manual/mod/core.html.en
+++ b/docs/manual/mod/core.html.en
@@ -5000,7 +5000,7 @@ certain events before failing a request</td></tr>
<table class="directive">
<tr><th><a href="directive-dict.html#Description">Description:</a></th><td>Controls what UNC host names can be accessed by the server
</td></tr>
-<tr><th><a href="directive-dict.html#Syntax">Syntax:</a></th><td><code>UNCList<var>hostname</var> ...</code></td></tr>
+<tr><th><a href="directive-dict.html#Syntax">Syntax:</a></th><td><code>UNCList <var>hostname</var> [<var>hostname</var>...]</code></td></tr>
<tr><th><a href="directive-dict.html#Default">Default:</a></th><td><code>unset</code></td></tr>
<tr><th><a href="directive-dict.html#Context">Context:</a></th><td>server config</td></tr>
<tr><th><a href="directive-dict.html#Status">Status:</a></th><td>Core</td></tr>
@@ -5012,10 +5012,20 @@ certain events before failing a request</td></tr>
has been specified by this directive. The intent is to limit access to
paths derived from untrusted inputs.</p>
-<div class="warning"><h3>Security</h3>
-<p>UNC paths accessed outside of request processing, such as during startup,
-are not checked against the hosts configured with this directive.</p>
-</div>
+ <div class="example"><p><code>
+ UNCList example.com other.example.com
+ </code></p></div>
+
+ <div class="warning"><h3>Security</h3>
+ <p>UNC paths accessed outside of request processing, such as during startup,
+ are not necessarily checked against the hosts configured with this directive.</p>
+ </div>
+
+ <div class="warning"><h3>Directive Ordering</h3>
+ <p>This directive should be placed before UNC paths used in httpd.conf.
+ Multiple occurrences of the directive reset the list.</p>
+ </div>
+
</div>
<div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>