|
Home > Archive > Apache Server configuration support > January 2004 > stop access to files
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
stop access to files
|
|
|
| HI oh great apache world
I'm building a site which is username / password access,after making
this access point idiot proof i realised , i am the real idiot, once
past the access point anyone can actually go straight to the next page
, once they have that files url..
Question, how can i stop this, i need a site where you must,must get
to it with user/pass ???????????
Ged
| |
| Davide Bianchi 2004-01-24, 7:33 pm |
| ged <paradice89@hotmail.com> wrote:quote:
> I'm building a site which is username / password access,
Are you using .htaccess or something else?
quote:
> past the access point anyone can actually go straight to the next page
If you are using apache's authentication, if you try to go to a page
and you're not authenticated, it will ask for authentication, if you
have used another way (server-side-programming), you'll need to add
a bit of code to check the authentication on every single page. This
means that every page have to be an 'active' page and not just plain
html.
Davide
--
| The relative speed of a computer, regardless of CPU architecture, is
| inversely proportional to the number of Microsoft products installed.
| -- From a Slashdot.org post
|
|
|
| |
|
| ged wrote:
quote:
> I'm building a site which is username / password access,after making
> this access point idiot proof i realised , i am the real idiot, once
> past the access point anyone can actually go straight to the next page
> , once they have that files url..
Assuming you have it configured correctly, limiting access via
login/password through .htaccess should protect a directory and all
child directories. Thus, protecting DocumentRoot should protect the
entire website.
--
Rossz
|
|
|
|
|