From 5b094ba98d9e147ab87dce2fae36cdaea5bfc556 Mon Sep 17 00:00:00 2001
From: Lorenz Stechauner <lorenz.stechauner@necronda.net>
Date: Thu, 11 Mar 2021 22:05:38 +0100
Subject: [PATCH] Hidden paths -> 403

---
 src/client.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/client.c b/src/client.c
index f338b58..66d0647 100644
--- a/src/client.c
+++ b/src/client.c
@@ -182,6 +182,10 @@ int client_request_handler(sock *client, unsigned long client_num, unsigned int
         } else if (strlen(uri.pathinfo) != 0 && conf->local.dir_mode != URI_DIR_MODE_INFO) {
             res.status = http_get_status(404);
             goto respond;
+        } else if (strncmp(uri.req_path, "/.well-known/", 13) != 0 && strstr(uri.filename, "/.") != NULL) {
+            res.status = http_get_status(403);
+            sprintf(err_msg, "Parts of path are hidden.");
+            goto respond;
         }
 
         if (uri.is_static) {