[thelist] .htaccess
Warden, Matt
mwarden at odyssey-design.com
Thu May 31 20:11:44 CDT 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> From: "R.Livsey" <R.Livsey at cache-22.co.uk>
> Subject: RE: [thelist] .htaccess
>
> > > What do I need to add to my .htaccess file to stop people
> > being able
> > > to read my .htpasswd file through the browser?
> >
> > Nothing really. Simply store your .htpasswd file below the
> > site root. So, if you have:
...
> Normaly I would do that, but this is with a host where I can only
> ftp into the site root - ie I cant put any files anywhere other
> than the site.
Ok, well, I'm getting into territory I don't know too much about
here, but you might be able to use a rewrite rule which simply
rewrites ".htpasswd" to something that will result in a 404 Error.
Though, I didn't think that apache would serve hidden files that
started with a "."
Btw, thanks for trimming your reply.
hth,
- --
mattwarden
mattwarden.com
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBOxbr03gH0dUmEhrcEQIJgQCfacLnMexrkXumW3JwVkiRlfvkA2kAn1qW
e5O1zT83UhezMwWg3d3mzAXb
=gPZ8
-----END PGP SIGNATURE-----
More information about the thelist
mailing list