From aea53a5dc3f047751dc76a668573269e56279938 Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Wed, 17 Apr 2024 17:54:00 +0530 Subject: [PATCH] Update and rename htdeployment.yaml to ht-deployment.yaml --- .../files/{htdeployment.yaml => ht-deployment.yaml} | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) rename http/exposures/files/{htdeployment.yaml => ht-deployment.yaml} (77%) diff --git a/http/exposures/files/htdeployment.yaml b/http/exposures/files/ht-deployment.yaml similarity index 77% rename from http/exposures/files/htdeployment.yaml rename to http/exposures/files/ht-deployment.yaml index 2e36d49873..a7d88a54b4 100644 --- a/http/exposures/files/htdeployment.yaml +++ b/http/exposures/files/ht-deployment.yaml @@ -1,10 +1,11 @@ -id: htdeployment +id: ht-deployment info: - name: .htdeployment - files tree cache file - author: Michal Mikolas (nanuqcz) + name: .htdeployment - Files Tree Cache File + author: Michal-Mikolas severity: medium - description: FTP Deployment cache file that contains whole files structure with paths to potentially sensitive files. + description: | + FTP Deployment cache file that contains whole files structure with paths to potentially sensitive files. remediation: Block access to the file using `.htaccess` on the server. The best-practise is to block all the folders/files beginning with `.` except `.well-known` folder. reference: - https://github.com/dg/ftp-deployment/tree/master @@ -16,6 +17,7 @@ info: verified: true vendor: dg product: ftp-deployment + max-request: 2 tags: files,exposure,php,deployment,cache http: @@ -30,6 +32,8 @@ http: part: body words: - "[config]" + - "1F 8B" + condition: or - type: word part: header