[thelist] cgi security help needed
Matthew Blanchard
blanchardmatthew at hotmail.com
Tue Dec 11 06:01:22 CST 2001
What Maryanna suggeted is better than using htaccess, but if you can't put
your data files outside the site tree, create an 'htaccess' file in the data
directory and in it the following line:
deny from all
(You don't need to create additional files.)
> From: "Cameron McCormick" <lordcutter at telocity.com>
> Subject: [thelist] cgi security help needed
>
> Hello,
> I recently purchased a cgi package that does advertising (I know I could
> do this myself in php) The problem being that if I follow their
> instructions it says to chmod all the sub dirs, including the accounts
> dir (holds all user info) 777 - I tried changing the rights but the
> script needs it - I was wondering if there is a way to make it so
> browsers are not allowed to look at the files but the script will still
> work ? I poked around for .htaccess info (I have never used it) but
> could only find info on making users and groups...
>
More information about the thelist
mailing list