.htaccess

[asmith]

i have a folder name "files" . i want to forbid the access to it  ,i mean if someone type in the address bar : 

 

www.domain/part1/files/

 

 

it gave him error .

as i read somewhere else on this forum , i made an .htaccess file , with no content but "Options -Indexes".

i put that in files folder, but when i type the address, it still shows me the content of the folder, what thing i'm doing wrong ?

[sKunKbad]

I think you would do something like this:

 

<Location /yourFolderName/>

deny from all

</Location>

 

 

[asmith]

i don't get it , i should put it in the .htaccess ?

 

is that in php.ini ??

 

 

[sKunKbad]

I modified it, go up and see. No, it isn't the php.ini. You would create a file called .htaccess and upload it to your root directory (assuming Apache is running on your server).

[asmith]

am i being so stupid ? i can't get it to work ,

i made :

 

.htaccess

<Location /yourFolderName/>
deny from all
</Location>

 

and put that in  http://localhost/mysite/file/

 

but still shows the index of files!!

 

(yes i'm using apache 2.2.6)

[sKunKbad]

if you want it to work on your localhost, then you will probably have to modify the httpd.conf file.

[asmith]

ah , that's not a thing tat would run o localhost ??

i thought there's no difference between a localhost and a real web host!

[sKunKbad]

well, I'm no Apache guru, but I think that the .htaccess files have to be "turned on" in the httpd.conf, so in that regard localhost may not be like your real web host.

 

see http://httpd.apache.org/docs/1.3/mod/core.html#allowoverride

[we4freelance]

Hello Smith,

 

According to me you just create 1 blank index.html and put it in your folder and no one can see its content.

 

I think this will help.

[sKunKbad]

asmith,

 

just go in to your httpd.conf file and in the two places you see:

 

AllowOverride None

 

change them to

 

AllowOverride All

 

and you are good to go.

[Daniel0]

Options -Indexes will not show the file list if you access the folder. I.e. http://example.com/folder will give a 403 Forbidden error but files can still be access, i.e. http://example.com/folder/file.ext will show.

 

Deny From All will give a 403 Forbidden error on both file listings and files.

 

 

So, if you want to hide the file listing but allow users to access the files use the former, if you wish to deny ALL access to all files use the latter.

 

 

In order to use the former in a .htaccess file placed in the folder you wish the settings to have effect on AllowOverride Options must be set. For the latter AllowOverride Limit must be set. You can also set AllowOverride All which will enable all directives in .htaccess files.

 

You can also put it in your httpd.conf file, but in order for this to work only on the folder you wish you use enclose it with <Location /path/to/folder> (path is relative to document root) and </Location>.