[Mono-bugs] [Bug 77175][Nor] New - "Web.Config" is delivered to the
client when it is written in upper cases like VS 2005 Format
bugzilla-daemon at bugzilla.ximian.com
bugzilla-daemon at bugzilla.ximian.com
Sat Jan 7 00:34:43 EST 2006
Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.
Changed by mfitzner at basinus.de.
http://bugzilla.ximian.com/show_bug.cgi?id=77175
--- shadow/77175 2006-01-07 00:34:42.000000000 -0500
+++ shadow/77175.tmp.24200 2006-01-07 00:34:42.000000000 -0500
@@ -0,0 +1,45 @@
+Bug#: 77175
+Product: Mono: Tools
+Version: 1.1
+OS: Debian Woody
+OS Details: Debian Sarge
+Status: NEW
+Resolution:
+Severity:
+Priority: Normal
+Component: XSP
+AssignedTo: gonzalo at ximian.com
+ReportedBy: mfitzner at basinus.de
+QAContact: mono-bugs at ximian.com
+TargetMilestone: ---
+URL:
+Cc:
+Summary: "Web.Config" is delivered to the client when it is written in upper cases like VS 2005 Format
+
+Description of Problem:
+Description of Problem:
+The "Web.Config" file is delivered to the client when it is written in
+upper cases like the VS 2005 Format. It is possible for example to
+retrieve the "Web.Config" file from http://www.XXX.com/Web.Config (Fake
+url).
+
+Steps to reproduce the problem:
+1. rename "web.config" to "Web.Config" (VS Style)
+2. Call http://<host>/Web.Config to retrieve the config file
+3.
+
+Actual Results:
+the actual "Web.Config" file
+
+Expected Results:
+an permission error message like
+
+Forbidden
+Description: Error processing request.
+Error Message: HTTP 403. Forbidden
+
+How often does this happen?
+every time
+
+Additional Information:
+i tested it only with the xsp2 version and not with xsp
More information about the mono-bugs
mailing list