me9867
Reputation: 1597
Is a viewable .git folder a security risk?
Recently started using Git via Bitbucket which is great. However I was a little concerned to be able to view the file tree from any browser?
I do have .gitignore enabled but I assume no file data or commit refs cannot be linked or of use to third parties. The folder permission for .git/ is 755 by default on my hosting.
Here is what I can see:
Upvotes: 1
Views: 735
Answers (1)
Related Questions
- How to check out a remote Git branch?
- How can I rename a local Git branch?
- How do I undo the most recent local commits in Git?
- How do I delete a Git branch locally and remotely?
- How do I undo 'git add' before commit?
- What is the difference between 'git pull' and 'git fetch'?
- How do I make Git forget about a file that was tracked, but is now in .gitignore?
- How do I force "git pull" to overwrite local files?
- How do I remove local (untracked) files from the current Git working tree?
- How to determine the URL that a local Git repository was originally cloned from