[thelist] .htaccess
Warden, Matt
mwarden at odyssey-design.com
Thu May 31 19:51:24 CDT 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> From: "R.Livsey" <R.Livsey at cache-22.co.uk>
> Subject: [thelist] .htaccess
>
> What do I need to add to my .htaccess file to stop people being
> able to read my .htpasswd file through the browser?
Nothing really. Simply store your .htpasswd file below the site root.
So, if you have:
/
/public_html/
You would store your .htpasswd file somewhere in / or a subdirectory
other than public_html.
Apache won't serve the file if it's not in public_html... well, it
shouldn't, anyway.
hth,
- --
mattwarden
mattwarden.com
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBOxbnDHgH0dUmEhrcEQLdrgCfSRcZCmVNX7JGLX/w+3+0UC9pQC4AoPSO
C2CfCbW6D1HXm7hg2ZA4y3cD
=oWjn
-----END PGP SIGNATURE-----
More information about the thelist
mailing list