diff options
| -rw-r--r-- | docs/manual/mod/core.xml | 23 |
1 files changed, 15 insertions, 8 deletions
diff --git a/docs/manual/mod/core.xml b/docs/manual/mod/core.xml index 4b15a909a9..bd61ec0a2f 100644 --- a/docs/manual/mod/core.xml +++ b/docs/manual/mod/core.xml @@ -5322,7 +5322,7 @@ recognized methods to modules.</p> <name>UNCList</name> <description>Controls what UNC host names can be accessed by the server </description> -<syntax>UNCList<var>hostname</var> ...</syntax> +<syntax>UNCList <var>hostname</var> [<var>hostname</var>...]</syntax> <default>unset</default> <contextlist><context>server config</context> </contextlist> @@ -5334,15 +5334,22 @@ recognized methods to modules.</p> has been specified by this directive. The intent is to limit access to paths derived from untrusted inputs.</p> -<note type="warning"><title>Security</title> -<p>UNC paths accessed outside of request processing, such as during startup, -are not checked against the hosts configured with this directive.</p> -</note> -</usage> -</directivesynopsis> + <example> + UNCList example.com other.example.com + </example> + + <note type="warning"><title>Security</title> + <p>UNC paths accessed outside of request processing, such as during startup, + are not necessarily checked against the hosts configured with this directive.</p> + </note> + <note type="warning"><title>Directive Ordering</title> + <p>This directive should be placed before UNC paths used in httpd.conf. + Multiple occurrences of the directive reset the list.</p> + </note> -UNCList +</usage> +</directivesynopsis> <directivesynopsis> |