sudhakararaog Posted March 24, 2008 Share Posted March 24, 2008 i am using apache server and presently when i try accessing any folders of my website i am able to browse the files ex = www.website.com/images which is a serious security risk as i am building a forum website using php and mysql. in the root directory i have created a .htaccess file and whenever someone access a file which is not on the server i have created a user friendly message that the file does not exist instead of a 404 error message displayed by the browser. similar to this how can i go about restricting users to browse all my folders in the toot directory. if anyone accesses for ex = www.website.com/phpscripts an alert should appear asking them to enter a username and password. 1. how can i do this using apache. 2. where do i write the username and password information and will this apply to all the folders in the root directory or specific directories. please advice. thanks. Link to comment https://forums.phpfreaks.com/topic/97597-restricting-access-to-folders-on-server/ Share on other sites More sharing options...
venkatesh2504 Posted March 24, 2008 Share Posted March 24, 2008 Hi Yes. .htaccess applies to all folders if you placed that in root directory. You can do that for a specifed directory by changing slightly. Refer .htpassword file for store user name and password. Link to comment https://forums.phpfreaks.com/topic/97597-restricting-access-to-folders-on-server/#findComment-499356 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.