Merge branch 'dev'

update security checks
day 1 patch
2025-09-07 16:23:11 +01:00 · 2025-09-07 16:18:20 +01:00 · 2025-08-29 16:30:33 +01:00
1 changed files with 4 additions and 5 deletions
--- a/main.go
+++ b/main.go
@ -574,11 +574,10 @@ func CheckRequest(app *model.AppState, next http.Handler) http.Handler {
            return
        }

-        // same with .php and awkward double-slash requests.
-        // obviously these don't affect me, but these tend to be lazy intrusion
-        // attempts. if that's what you're about, i don't want you on my site.
-        if strings.HasPrefix(r.URL.Path, "//") ||
-        strings.HasSuffix(r.URL.Path, ".php") ||
+        // obviously .php requests these don't affect me, but these tend to be
+        // lazy wordpress intrusion attempts. if that's what you're about, i
+        // don't want you on my site.
+        if strings.HasSuffix(r.URL.Path, ".php") ||
        strings.HasSuffix(r.URL.Path, ".php7") {
            http.NotFound(w, r)
            fmt.Fprintf(
Author	SHA1	Message	Date
ari melody	aa79df7461	Merge branch 'dev'	2025-09-07 16:23:11 +01:00
ari melody	fd4335ced4	update security checks	2025-09-07 16:18:20 +01:00
ari melody	89bb46c49e	day 1 patch	2025-08-29 16:30:33 +01:00