View previous topic :: View next topic |
Author |
Message |
derangedtaco -
Joined: 13 Feb 2006 Posts: 19
|
Posted: Sat Feb 25, 2006 5:50 pm Post subject: Locking user in directory |
|
|
How can I lock a user in a directory? Because I want one folder to have a directory listing, but then there's a link at the top that says "Go to a higher directory". How can I get rid of that? I think I've seen it somewhere before, just don't know where... |
|
Back to top |
|
|
aprelium -
Joined: 22 Mar 2002 Posts: 6800
|
Posted: Sun Feb 26, 2006 2:53 pm Post subject: Re: Locking user in directory |
|
|
derangedtaco wrote: | How can I lock a user in a directory? Because I want one folder to have a directory listing, but then there's a link at the top that says "Go to a higher directory". How can I get rid of that? I think I've seen it somewhere before, just don't know where... |
You can remove the Go to a higher directory link by writing a custom directory listing script (a variation on the directory listing script in the software user's manual) which displays everything but the .. directory.
But this won't prevent a user from typing the URL of the parent directory directly in his/her browser. So to have an effective protection, you'll have to add a better system (probably using password protection or IP access controls). _________________ Support Team
Aprelium - http://www.aprelium.com |
|
Back to top |
|
|
derangedtaco -
Joined: 13 Feb 2006 Posts: 19
|
Posted: Sun Feb 26, 2006 4:50 pm Post subject: Re: Locking user in directory |
|
|
aprelium wrote: | derangedtaco wrote: | How can I lock a user in a directory? Because I want one folder to have a directory listing, but then there's a link at the top that says "Go to a higher directory". How can I get rid of that? I think I've seen it somewhere before, just don't know where... |
You can remove the Go to a higher directory link by writing a custom directory listing script (a variation on the directory listing script in the software user's manual) which displays everything but the .. directory.
But this won't prevent a user from typing the URL of the parent directory directly in his/her browser. So to have an effective protection, you'll have to add a better system (probably using password protection or IP access controls). |
Yeah, but he can't type in the URL and see the directory listing if there's an index file.
I think I'm secure. http://24.23.192.5
I want users to be able to view the downloads/ directory, and that's it. Only people with the password should be able to login to login/. Can you check and make sure it's all right? Thanks. |
|
Back to top |
|
|
Tim1681 -
Joined: 17 Jan 2005 Posts: 160 Location: Bristol, CT, USA
|
Posted: Sun Feb 26, 2006 6:14 pm Post subject: |
|
|
It doesn't matter if you have the '../' link in the Directory Listing if you are keeping the file structure as it is now. As long as there is an Index file in the parent directory, when they click the '../' it will just bring them back to the Index file that's in the parent directory.
So if you have a your website in 'root' and your downloads in '/downloads/', it will display your website when they click '../' in the '/downloads/' directory listing :) _________________ mysql> SELECT * FROM users WHERE clue > 0;
0 rows returned.
|
|
Back to top |
|
|
derangedtaco -
Joined: 13 Feb 2006 Posts: 19
|
Posted: Sun Feb 26, 2006 6:21 pm Post subject: |
|
|
k, thanks, i was just making sure |
|
Back to top |
|
|
|