| View previous topic :: View next topic |
| Author |
Message |
d@n
-
Joined: 29 Dec 2009
Posts: 1
|
 Posted: Tue Dec 29, 2009 1:47 pm Post subject: Forbid access to sub directory. |
 |
|
Hello,
I am currently not having problems with my Abyss webserver consoles, i am running the X1 version of this as it suits my needs just perfectly, so thank you very much for this little compact program. :)
Recently i have forbid access to one of my directorys, example: www.******.com/images/backup
The backup directory is actually forbidden in this example
I know forbidding access to a subdirectory can be done in X1 but i have forgotten how i've done this and would like to know as i plan on buying a new system and want to move everything onto there. I'm occasionally backing everything up so i want to make sure that i know how this is done. If anybody could point me into the right direction i would be really greatful, have been trying to figure out how i've done this for quite some hours now.
Cheers,
d@n[/b] |
|
| Back to top |
  |
 |
tyklazeu
-
Joined: 15 Jan 2010
Posts: 1
|
| Posted: Mon Jan 25, 2010 5:37 pm Post subject: |
|
|
Same here....
any clue ? anybody? |
|
| Back to top |
|
|
admin
Site Admin
Joined: 03 Mar 2002
Posts: 1312
|
| Posted: Wed Aug 25, 2010 2:04 pm Post subject: Re: Forbid access to sub directory. |
|
|
d@n,
Create an IP access rule which virtual path is:
/images/backup
and where the order is deny/allow.
This rule will deny access to that directory to all visitors.
You can then create a HTML page with the text:
The backup directory is actually forbidden in this example
and declare it as your 403 custom error page.
_________________
Follow @abyssws on Twitter
Subscribe to our newsletter
_________________
Forum Administrator
Aprelium - https://aprelium.com |
|
| Back to top |
|
|
Axis
-
Joined: 29 Sep 2003
Posts: 336
|
| Posted: Wed Aug 25, 2010 5:05 pm Post subject: |
|
|
Hello d@n and Aprelium--
Wouldn't it be easier to just password protect the directory? Or am I missing something?
Regards,
Axis |
|
| Back to top |
|
|
admin
Site Admin
Joined: 03 Mar 2002
Posts: 1312
|
| Posted: Wed Aug 25, 2010 6:28 pm Post subject: |
|
|
| Axis wrote: | Hello d@n and Aprelium--
Wouldn't it be easier to just password protect the directory? Or am I missing something?
Regards,
Axis |
The directory could contain some data that is only useful to a script and the files inside it are not to be viewed on the Web site. Sure the directory could be password protected but the best is to simply deny its access to everyone as we suggested.
_________________
Follow @abyssws on Twitter
Subscribe to our newsletter
_________________
Forum Administrator
Aprelium - https://aprelium.com |
|
| Back to top |
|
|
markspenser
-
Joined: 23 Jul 2009
Posts: 14
|
| Posted: Mon Aug 30, 2010 10:41 am Post subject: |
|
|
| If someone will ever come to know about the protected password then it can harm the process. Rather its a good to have a single access. |
|
| Back to top |
|
|
DonQuichote
-
Joined: 24 Dec 2006
Posts: 68
Location: The Netherlands
|
| Posted: Tue Aug 31, 2010 8:18 am Post subject: Design issue |
|
|
I think this is a design issue. Why put a private directory in a public space? You could as easily put it outside the web root. Suppose the web root is
/var/www/yoursite/htdocs/
You could easily store those images in
/var/www/yoursite/backup/images/
or even in
/home/youruser/backup/images/
Now this path is not part of the public portion of the site and can therefore never be reached by a browser. But it can be perfectly reached by your script. |
|
| Back to top |
|
|
gabridotns
-
Joined: 15 Apr 2009
Posts: 6
|
| Posted: Tue Sep 28, 2010 2:05 pm Post subject: |
|
|
same thought here DonQuichote
or if you were just backuping, why don't just tar-gziping the folder? |
|
| Back to top |
 |
|
|
