[SOLVED] Protect file from direct access

[ShaolinF]

Hi Guys,

 

So I am including a file (include("mailme.php") -- The problem is people can directly access this file, something which I don't want, so what methods could I use to protect this file from direct access ?

[revraz]

Use sessions or a referer.

[ShaolinF]

Im thinking of creating a random number, store it in a session and compare it in the mailme.php file. What do you think ?

[revraz]

Set a session in the page that calls it and check that session.  It can be anything at all, they won't be able to set the session variable so really no need to make it a random number.

[resago]

put it in a directory higher than public_html

 

[legohead6]

have a script on it that gets the current webaddress, if its not the page that its included on, then redirect people away, or just exit the script and display an error message.