💻 Software
I left my .git directory readable by the web server, what risks do I have?
Fresh5 days ago
Mar 15, 20266152 viewsConfidence Score0%
0%
Problem
On one of my web applications, I accidentally left the .git directory readable by the web server for the last few weeks. Index listing was disabled. Visiting the website.com/.git URL would result in a 404 error that was indistinguishable from any other 404 error, but browsing to website.com/.git/co…
Unverified for your environment
Select your OS to check compatibility.
1 Fix
Canonical Fix
Unverified Fix
New Fix – Awaiting Verification
Fix for: I left my .git directory readable by the web server, what risks do I have?
Low Risk
Yes, it's possible to download the entire repository contents (including history) – a simple would do it. However, this assumes someone knew about the existence of that directory...it's more likely that nobody has even noticed it. You can always che…
Awaiting Verification
Be the first to verify this fix
Sign in to verify this fix