stackoom
  简体   繁体   中英

How do you prevent direct access to a file in Apache?

 原文  2014-10-16 09:52:41       php/ apache/ .htaccess

Question

我想阻止用户通过其URL直接访问目录中的文件,但仍然希望能够通过includerequire函数在PHP程序内使用它们。

3 answers

solution1
 3  2014-10-16 09:57:49

It is possible to put a .php file outside of the public_html folder. For example, if your public_html folder is at /my/domain/public_html/ you could put your PHP files in /my/domain/php_files/ and still access it from scripts within the public_html folder by using absolute or relative paths, but since it is outside of the public folder it will not be accessible over the web.

Keeping files outside of the public document folder is recommended best practice for configuration files etc. for security reasons.

solution2
 3 ACCPTED  2014-10-16 10:19:39

Mention the below line in your .htaccess file. It'll definitely solve your problem. 

RewriteRule ^includes/ - [R=404,L,NC]

solution3
 0  2014-10-16 09:54:57

<Files conf.inc.php>
order allow,deny
deny from all
</Files>

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Prevent file access on direct http Prevent direct access to file in URL How to Prevent Direct URL Access? How to prevent direct access to files? How to Prevent Direct Access to a php file that is generating Image How to prevent a PDF file from direct URL Access in Wordpress? Prevent Direct Access to pdf file? php, wordpress prevent direct access to php file used as an image Prevent direct access to a php include file Prevent direct access to file through AJAX call
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM