How to protect a directory in apache where PHP file resides

haans

Hi,

I have all my .php files in my webserver, directory called php
eg: http://mywebserver/php/

By default all the users can access all the files that resides there.

However, if the user were to type http://mywebserver/php and return without specifying a php file eg: http://mywebserver/php/test.php

then all my files in php directory will be exposed.

Is there a way to protect this? I am running Apache 1.3.27 in Windows as well as Unix also.

Thanks.

dotwebbie

.htaccess. 🙂
http://www.javascriptkit.com/howto/htaccess.shtml

haans

Originally posted by dotwebbie
.htaccess. 🙂
http://www.javascriptkit.com/howto/htaccess.shtml

But that requires a user authentication. Maybe that it is only way.

Thanks.

haans

Originally posted by dotwebbie
.htaccess. 🙂
http://www.javascriptkit.com/howto/htaccess.shtml

Hi Dotwebbie,

Thanks for the URL. Very informative. Should include into my website. The work around is pretty simple.
1. create the file .htaccess into whutever directory that you do wish to protect. Only allow users to point directly to the file but not view the directory contents.

vi httpd.conf. Include IndexIgnore *

Cheers mate.

dotwebbie

No problem. 🙂