Description of problem: Although this is not a problem, would be nice and would look better in security scans if we prevent directory listing on directories where it is not needed Version-Release number of selected component (if applicable): Satellite 5.7.0 How reproducible: always Steps to Reproduce: Check that following dirs are browse-able: > http://<fqdn>/fonts/Roboto/ > http://<fqdn>/fonts/font-spacewalk/font/ > http://<fqdn>/img/nav/ > http://<fqdn>/img/i18n/ > http://<fqdn>/img/docs/ > http://<fqdn>/javascript/select2/ > http://<fqdn>/errors/ > http://<fqdn>/javascript/ > http://<fqdn>/img/ > http://<fqdn>/images/ > http://<fqdn>/css/ > http://<fqdn>/fonts/font-awesome/css/ > http://<fqdn>/fonts/font-awesome/ > http://<fqdn>/fonts/ > http://<fqdn>/fonts/font-spacewalk/css/ > http://<fqdn>/fonts/font-spacewalk/ > http://<fqdn>/fonts/font-awesome/fonts/ Actual results: Apache generates directory listing for these Expected results: Apache does not generates directory listing for these
Fix available in upstream as 7899ff8f8aa289203383719edde0ff800084deb0 . Apache will raise Permission Error from /var/www/html/errors now.
I did one-line fix in due to badly displayed fonts in the WebUI. Spacewalk.git 82776f76af0ee05edf82e5fe876aa9410a12eaf9
Forgot on directory http://<fqdn>/images/ Others list of files in directory were not shown.
I created new bug 1456393 for Insights plug-in. And I verified the bug with package spacewalk-config-2.6.0-3.el6sat.noarch