HC's Capture the Flag website
CTF Contests
25C3-CTF
25C3-CTF final results
Advisory #41
From team nosec/!eof
New advisory by : watz
Affected service(s): cgibas
Severity [lmh] : medium
===== Problem =====
Lighttpd allows read of .htaccess or .htpasswd files
===== Impact =====
===== Fix =====
Add something like url.access-deny = ( ".htaccess", ".htpasswd" ) to
lighttpd.conf
Rating
[0] boring