<p>Note also, that this option <strong>gets ignored</strong> if set
inside a <code class="directive"><a href="#location"><Location></a></code>
section.</p>
+ <p>Omitting this option should not be considered a security restriction,
+ since symlink testing is subject to race conditions that make it
+ circumventable.</p>
</div></dd>
<dt><code>Includes</code></dt>
target file or directory is owned by the same user id as the
link.
- <div class="note"><h3>Note</h3> This option gets ignored if
- set inside a <code class="directive"><a href="#location"><Location></a></code> section.</div>
+ <div class="note"><h3>Note</h3> <p>This option gets ignored if
+ set inside a <code class="directive"><a href="#location"><Location></a></code> section.</p>
+ <p>This option should not be considered a security restriction,
+ since symlink testing is subject to race conditions that make it
+ circumventable.</p></div>
</dd>
</dl>
<p>Note also, that this option <strong>gets ignored</strong> if set
inside a <directive type="section" module="core">Location</directive>
section.</p>
+ <p>Omitting this option should not be considered a security restriction,
+ since symlink testing is subject to race conditions that make it
+ circumventable.</p>
</note></dd>
<dt><code>Includes</code></dt>
target file or directory is owned by the same user id as the
link.
- <note><title>Note</title> This option gets ignored if
+ <note><title>Note</title> <p>This option gets ignored if
set inside a <directive module="core"
- type="section">Location</directive> section.</note>
+ type="section">Location</directive> section.</p>
+ <p>This option should not be considered a security restriction,
+ since symlink testing is subject to race conditions that make it
+ circumventable.</p></note>
</dd>
</dl>
projects / apache / commitdiff