I've made an application with SenchaCmd-5.1.0.26-linux-x64
When I look to the Chrome Web client, I see bootstrap.json that contain all "full" path to application.
[snap...]
/web/htdocs/mypath/myapp/overrides
File bootstrap.json giving full path
When I look to the Chrome Web client, I see bootstrap.json that contain all "full" path to application.
- classpath: "/web/htdocs/mypath/myapp/app"
[snap...]
/web/htdocs/mypath/myapp/overrides
And so on.
Is that normal? I could give lot of examples why this might be a security flaw, and to the least: giving the less information to bad people reduces the chances for black-hackers.
What is the way to give no information about the full path?
File bootstrap.json giving full path
Aucun commentaire:
Enregistrer un commentaire