forked from h5bp/html5-boilerplate
-
Notifications
You must be signed in to change notification settings - Fork 0
Security
Nicolas Gallagher edited this page Jan 27, 2012
·
2 revisions
Under construction. Feel free to contribute
Initial list to write out later ...
-
.htaccess files cannot be assumed to work
-
know what is in a "public_html" directory
-
requests for things like .git & .gitignore should result in 404 errors (not found), instead of 403 errors (verbotten)
-
if you don't run the build script be sure to remove the /build directory, etc
-
perhaps eventually a script or site to verify that an H5B site passes basic security tests?