stackoom
  简体   繁体   中英

htaccess <Directory> deny from all

 原文  2011-12-30 19:59:26       apache/ .htaccess/ apache2

Question

I've been cleaning up my project lately. I have a main .htaccess in the root directory and 6 others. 5 of them ran Options -Indexes which i didn't see anypoint of allowing any Directory viewing so moved that to the main one. so now i only have 2 .htaccess files. the main and one in /system which holds 

# Block External Access
deny from all

So i wanted to run that on /system only from within the main. So i deleted the one in /system and added 

 # Block External Access
<Directory "/system/">
deny from all
</Directory>

to my main .htaccess file leaving 1!

but now i get a

Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator, webmaster@localhost and inform them of the time the error occurred, and anything you might have done that may have caused the error.

More information about this error may be available in the server error log.

Apache/2.2.17 (Ubuntu) Server at 10.0.1.5 Port 80

The goal is to block reading any files in /system and it's sub directory's but allow viewing of everything else all from one .htaccess file for the whole project. Any ideas on how i can fix this? I did some Google searches but couldn't really come out with anything.

3 answers

solution1
 81 ACCPTED  2011-12-30 20:31:42

You cannot use the Directory directive in .htaccess. However if you create a .htaccess file in the /system directory and place the following in it, you will get the same result 

#place this in /system/.htaccess as you had before
deny from all

solution2
 11  2017-02-16 18:48:32

You can also use RedirectMatch directive to deny access to a folder.

To deny access to a folder, you can use the following RedirectMatch in htaccess : 

 RedirectMatch 403 ^/folder/?$

This will forbid an external access to /folder/ eg : http://example.com/folder/ will return a 403 forbidden error.

To deny access to everything inside the folder, You can use this : 

RedirectMatch 403 ^/folder/.*$

This will block access to the entire folder eg : http://example.com/folder/anyURI will return a 403 error response to client.

solution3
 1  2015-10-30 18:46:38

You can use from root directory: 

RewriteEngine On
RewriteRule ^(?:system)\b.* /403.html

Or: 

RewriteRule ^(?:system)\b.* /403.php # with header('HTTP/1.0 403 Forbidden');

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question htaccess <Directory> deny from all apache2 ubuntu .htaccess - Deny from all except index.php and current directory ./ Deny Access to all directory and file listing with .htaccess .htaccess, order allow, deny, deny from all: confused? htaccess files with “deny from all” does it deny subdirectories as well? deny directory listing with htaccess .htaccess to deny directory access .htaccess deny from all doesn't work How to use .htaccess deny from all on subdirectory Apache: How to apply 'Order Deny,Allow Deny from all' for directory host/content/ with using only one .htaccess in host/.htaccess, without httpd.conf?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM