From: Joe Orton Date: Tue, 14 Jul 2026 14:25:20 +0000 (+0000) Subject: * SECURITY.md: Typos/formatting fixes suggested by Claude. X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=64cd8e74e85dea85cb82eeb9ec80f2189d6aebe0;p=thirdparty%2Fapache%2Fhttpd.git * SECURITY.md: Typos/formatting fixes suggested by Claude. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1936134 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/SECURITY.md b/SECURITY.md index b202a281d7..78266af112 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -26,7 +26,7 @@ Vulnerabilities](http://httpd.apache.org/security/vulnerabilities_24.html) If an issue is reported against an aspect of the security model which is not documented here, it MUST be accompanied by a clear description -of that aspect the model, showing why a trust boundary exists and how +of that aspect of the model, showing why a trust boundary exists and how it is violated. It is helpful to use references to vulnerabilities previously disclosed by this project, the httpd documentation (see docs/manual), and to demonstrate common usage patterns. @@ -81,7 +81,7 @@ configurable limits; e.g. LimitRequestFields limits the RAM consumption by HTTP headers, LimitXMLRequestBody limits the RAM consumption by parsing XML request documents. -Example vulnerabilities which violated the model: CVE-2004-0942 +Example vulnerabilities which violated the model: CVE-2004-0942. ## Privilege separation on Unix platforms @@ -107,7 +107,7 @@ model. Example vulnerabilities which violated the model: CVE-2007-3304, CVE-2012-0031. -## Delegated Configuration +## Delegated Configuration Server configuration can be delegated to trusted local site authors by allowing use of .htaccess files in some configurations (see