alternate security meathod needed .htaccess / php

Bob132 · #1 09-02-2009, 03:24 PM

previously had prevented certain pages from being viewed in htaccess files by listing the .html names of the files (FilesMatch) w/ domain/IP restrictions.

The web page has been converted to php and now has and index.php file that is always displayed with the differing content piped in by opening the original html files. So pages are differentiated as follows index.php?content = value3. In the scripting portion the valuex portion dirrects which html file to open.

The problem with doing it this was is that the html files that were previously restricted are no longer. Is there a way to restore the original security features .htaccess or not?

Newbie · #2 09-02-2009, 03:41 PM

throw the html files in a directory with htpasswd

http://httpd.apache.org/docs/2.0/programs/htpasswd.html

SPaReK · #3 09-02-2009, 03:48 PM

You would need to do this filtering in the index.php PHP script.

You might be able to do it with mod_rewrite in your .htaccess file, but I cannot be certain if this can be accomplished.

microbloghosting · #4 09-03-2009, 03:55 AM

htpassword should be good.

zoticaic · #5 09-03-2009, 04:06 AM

If you need to allow certain HTML files via index.php and restrict the other, it is more secure doing it within index.php itself. Since index.php is exposed to directory traversal vulneraibility i.e. index.php?content=../../../../../../etc/passwd%%00

alternate security meathod needed .htaccess / php

Sponsored Links

Advertise Here

Internet Services

Web Development

Digital Marketing

Consumer Tech