déplacement de la base de données et explication dans le README pour sécuriser ce...

author nicosomb <nicolas@loeuillet.org>

Thu, 4 Apr 2013 18:12:50 +0000 (20:12 +0200)

committer nicosomb <nicolas@loeuillet.org>

Thu, 4 Apr 2013 18:12:50 +0000 (20:12 +0200)
author nicosomb <nicolas@loeuillet.org>
Thu, 4 Apr 2013 18:12:50 +0000 (20:12 +0200)
committer nicosomb <nicolas@loeuillet.org>
Thu, 4 Apr 2013 18:12:50 +0000 (20:12 +0200)
diff --git a/README.md b/README.md

index e0712addc5633fc46c862946e0f886b197eabf6e..a1c7920f1519b490a3beca3c6625096e61c72879 100755 (executable)
--- a/README.md
+++ b/README.md
@@ -6,6 +6,16 @@ Abandon Pocket, Instapaper and other Readability service : adopt poche. It is th
  
  ...
  
+## Security
+
+You **have** to protect your db/poche.sqlite file. Modify the virtual host of your website to add this condition :
+```apache
+<Files ~ "\.sqlite$">
+    Order allow,deny
+    Deny from all
+</Files>
+```
+
  ## License
  Copyright © 2010-2013 Nicolas Lœuillet <nicolas@loeuillet.org>
  This work is free. You can redistribute it and/or modify it under the
diff --git a/poche.sqlite b/db/poche.sqlite

similarity index 100%

rename from poche.sqlite

rename to db/poche.sqlite
diff --git a/index.php b/index.php

index be1ebef97cd913d6bba938360cee143f2fc2af93..a27f199352b6c92394acfc738c1b73ff024df593 100755 (executable)
--- a/index.php
+++ b/index.php
@@ -25,7 +25,7 @@
  
  try
  {
-    $db_handle = new PDO('sqlite:poche.sqlite');
+    $db_handle = new PDO('sqlite:db/poche.sqlite');
      $db_handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
  }
  catch (Exception $e)
author	nicosomb <nicolas@loeuillet.org>
	Thu, 4 Apr 2013 18:12:50 +0000 (20:12 +0200)
committer	nicosomb <nicolas@loeuillet.org>
	Thu, 4 Apr 2013 18:12:50 +0000 (20:12 +0200)
README.md		patch \| blob \| blame \| history
db/poche.sqlite	[moved from poche.sqlite with 100% similarity]	patch \| blob \| blame \| history
index.php		patch \| blob \| blame \| history