website subdirectory protection

 
Post new topic   Reply to topic    Aprelium Forum Index -> General Questions
View previous topic :: View next topic  
Author Message
jscjso
-


Joined: 27 May 2008
Posts: 15

PostPosted: Mon Jun 16, 2008 9:21 pm    Post subject: website subdirectory protection Reply with quote

My main directory of my website has pl and html files. When visitors run some of these files. The profile of the visitors are stored in txt file in a subdirectory.

How can I set up a security scheme to allow the execution of my web script to access, add, and modify the txt file in the subdirectory while blocking visitors to view the content of the txt file? Visitors can type the full path with filename of the txt file, the content will show up on the browser screen, I want to block this.

Is there a way to set in Abyss?

I tried from the Vista side to set the security. If you 'deny' the user on the subdiretory. The web script cannot access the txt file neither.
Back to top View user's profile Send private message
rrinc
-


Joined: 24 Feb 2006
Posts: 725
Location: Arkansas, USA

PostPosted: Mon Jun 16, 2008 10:13 pm    Post subject: Reply with quote

Use Access Control and block /name-of-file.txt
_________________
-Blake | New Server :D
SaveTheInternet
Soy hispanohablante. Puedes contactarme por mensajes privados.
Back to top View user's profile Send private message Visit poster's website Yahoo Messenger MSN Messenger
pkSML
-


Joined: 29 May 2006
Posts: 952
Location: Michigan, USA

PostPosted: Sun Jun 22, 2008 7:09 pm    Post subject: Reply with quote

I recommend reading the documentation: http://www.aprelium.com/data/doc/2/abyssws-win-doc-html/hosts-configuration.html#HOSTS-AC
_________________
Stephen
Need a LitlURL?


http://CodeBin.yi.org
Back to top View user's profile Send private message Visit poster's website
DonQuichote
-


Joined: 24 Dec 2006
Posts: 68
Location: The Netherlands

PostPosted: Sun Jun 22, 2008 9:29 pm    Post subject: Why inside the web root? Reply with quote

Is there any reason the files are stored within the web root? It is much safer to store anything that does not need to be called by a browser outside it.
Back to top View user's profile Send private message
abyssisthebest
-


Joined: 30 Jun 2005
Posts: 319
Location: Boston, UK

PostPosted: Wed Jun 25, 2008 7:32 am    Post subject: Reply with quote

The files could be part of a 'members only' area, meaning he only wants 'allowed' users to have access to the files.

But yes, things like cache files are more secure stored outside of the website directory.
_________________
My online Portfolio
Back to top View user's profile Send private message Send e-mail MSN Messenger
Display posts from previous:   
Post new topic   Reply to topic    Aprelium Forum Index -> General Questions All times are GMT + 1 Hour
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB phpBB Group