security message after upgrade to 9.5.17

Question

after upgrading to 9.5.17 i get in the reports the following security messages:

Server Response on static files:

www.mydomain.de/typo3temp/assets/43cd7         


        

Answer 1

For shared hosting it can be quite hard to find out the correct handler for php.

some specialty for 1&1 Ionos, might be even special to this particular shared hosting package:

shared hosting with php 7.3 (confirmed in phpinfo), but $_SERVER['REDIRECT_HANDLER'] gives "x-mapp-php5" (not sure why, could be that the hosting is running for many years and was upgraded to php 7 and they somehow alias it for whatever reason)

The working solution for me was:

    RemoveType .html .htm
    
        AddType text/html .html
        AddType text/html .htm
    

    RemoveType .svg .svgz
    
        AddType image/svg+xml .svg
        AddType image/svg+xml .svgz
    

    RemoveHandler .php
    RemoveType .php
    
        AddType x-mapp-php5 .php
        AddHandler x-mapp-php5 .php
    

I had to remove both the handler/type and add them again within the filesmatch. Took me quite a while to get this working, hope this helps.

For host-europe $_SERVER['REDIRECT_HANDLER'] was empty, php7.4:

    ....

    RemoveHandler .php
    RemoveType .php
    
        # only this handler seems to work
        AddType application/x-httpd-php .php
        AddHandler application/x-httpd-php .php