Results 1 to 5 of 5
  1. #1

    alternate security meathod needed .htaccess / php

    previously had prevented certain pages from being viewed in htaccess files by listing the .html names of the files (FilesMatch) w/ domain/IP restrictions.

    The web page has been converted to php and now has and index.php file that is always displayed with the differing content piped in by opening the original html files. So pages are differentiated as follows index.php?content = value3. In the scripting portion the valuex portion dirrects which html file to open.

    The problem with doing it this was is that the html files that were previously restricted are no longer. Is there a way to restore the original security features .htaccess or not?

  2. #2
    Join Date
    Jan 2001
    throw the html files in a directory with htpasswd
    eeeeeeeeeeeeeeeewwwww it's broke

  3. #3
    Join Date
    Apr 2002
    You would need to do this filtering in the index.php PHP script.

    You might be able to do it with mod_rewrite in your .htaccess file, but I cannot be certain if this can be accomplished.

  4. #4
    Join Date
    Sep 2009
    htpassword should be good.

  5. #5
    Join Date
    Jun 2007
    If you need to allow certain HTML files via index.php and restrict the other, it is more secure doing it within index.php itself. Since index.php is exposed to directory traversal vulneraibility i.e. index.php?content=../../../../../../etc/passwd%%00

Similar Threads

  1. htaccess or/and Mod security ??
    By dotcom22 in forum Hosting Security and Technology
    Replies: 5
    Last Post: 08-28-2009, 03:06 PM
  2. htaccess security advice
    By Jcink in forum Hosting Security and Technology
    Replies: 4
    Last Post: 09-28-2005, 11:31 PM
  3. Replies: 2
    Last Post: 01-30-2005, 02:28 PM
  4. .htaccess Security File
    By tacoX in forum Programming Discussion
    Replies: 8
    Last Post: 11-10-2004, 09:49 AM
  5. htaccess security question
    By Sonicade in forum Hosting Security and Technology
    Replies: 4
    Last Post: 05-06-2004, 08:12 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts