Have checksetup.pl block web-access to runtests.sh (by .htaccess) and

chmod +x runtests.sh so that it can be run with ./

r=bbaetz on irc, no 2nd review needed. No bug filed.

webtools/bugzilla/checksetup.pl

@@ -590,7 +590,7 @@ if ($my_create_htaccess) {
     open HTACCESS, ">.htaccess";
     print HTACCESS <<'END';
 # don't allow people to retrieve non-cgi executable files or our private data
-<FilesMatch ^(.*\.pl|localconfig|processmail|syncshadowdb)$>
+<FilesMatch ^(.*\.pl|localconfig|processmail|syncshadowdb|runtests.sh)$>
   deny from all
 </FilesMatch>
 END
@@ -682,7 +682,7 @@ unlink "data/versioncache";
 
 # These are the files which need to be marked executable
 my @executable_files = ('processmail', 'whineatnews.pl', 'collectstats.pl',
-   'checksetup.pl', 'syncshadowdb', 'importxml.pl');
+   'checksetup.pl', 'syncshadowdb', 'importxml.pl', 'runtests.sh');
 
 # tell me if a file is executable.  All CGI files and those in @executable_files
 # are executable