FreeBSD - Tutorials, Security
Home   Archives   Sitemap   About   Contact

How to prevent visitors from viewing .htaccess and .htpasswd files
Home NEW! Unix Forum News 100 Tips and Tricks Website Development Server Operating Systems Databases
 Ivorde.ROarrow Website Development arrowWebsite SecurityarrowHow to prevent visitors from viewing .htaccess and .htpasswd files 

Article Sections
    Hello, Guest !
User name:
Password:
 
Google

 SATELLITE INTERNET
 FreeBSD Tutorials
 Linux LVM Commands
 Free Shell Accounts
 FreeBSD Project
 FreeBSD Handbook
 Advanced Bash-Scripting Guide
 The OpenBSD Project
 Distrowatch
 FreeBSD Handbook


Apache Webserver Home Page

Blog, intrebari si raspunsuri despre Leasing

Posted on: 03 Feb 2008
Author: mandrei
Section: Website Development | Website Security 		Views: 131
Comments: 0 (Add)

How to prevent visitors from viewing .htaccess and .htpasswd files
hide .htaccess file, disallow access to .htaccess files to browsers

Every .htaccess file from any web server out there will have sensitive data inside it. If .htaccess files are not protected by default, they can be accessed by anyone (just type in your borwser: http://www.site.com/.htaccess and, if this restriction is in place, you'll get a 403 Forbidden error).

How to prevent visitors from viewing .htaccess and .htpasswd files

By placing the following lines in your apache's config file (/etc/httpd/httpd.conf on Linux or /usr/local/etc/apache/httpd.conf on FreeBSD), if you have access or in your .htaccess file:


<Files ~ "^.ht">
    Order allow,deny
    Deny from all
    Satisfy All
</Files>

This will prevent your website visitors from viewing any files starting with ".ht" (.htaccess and .htpasswd).

Read more on Apache Files directive

Bookmarks: Echo "How to prevent visitors from viewing .htaccess and .htpasswd files" around:
del.icio.usdiggFurlYahooMyWebGoogleBookmarksFaceBookTechnocratti
-------------------advertising-----------------

Other articles in Website Development / Website Security
» libwww-perl/5.805 User agent (bot) visited my website
» How to set Apache not to log requests for images or java scripts
» PHP function to count files in a directory on the server
» LIGHTTPD - create virtual hosts - subdomains - quick how-to




Contact webmaster regarding this article
Register or Login to post your article
Hello, Guest ! You can Login or Register to www.ivorde.ro!

 Post comment:

Name:
Title:
Comment:
Please type the word you see in the image (anti-spam verification). Refresh the page if you don't understand the word.
Verification code
Allowed HTML Tags for comments:<p><strong><em><u><h1><h2><h3><h4><h5><h6><img><li>
<ol><ul><span><div><br><ins><del>

0 comment(s) to How to prevent visitors from viewing .htaccess and .htpasswd files:
   Latest topics on the forum:
Nginx + php-fpm setting php upload_max_filesize and other php values per vhost
Mysql> how to store select Zulu / UTC timestamp in database
Quagga ospf neighbour stuck in ExStart/DROther state
How to disable anonymous access in samba 3
"checking for libnet_build_ip in -lnet... no"+"ERROR! Libnet library not found"
CentOS Install Nemesis packet crafting tool + Libnet
Using curl to get the HTTP response from an HTTP server
Mdadm - Linux software RAID
Linux - Unable to login (and authentication succeeds) - File size limit exceeded
Linux/FreeBSD how to check ntp time synchronization
 
   Most viewed articles:
How to remove first/last character from a string using SED - 6792 views
How to clear/reset DNS cache on Windows XP / Linux - 4459 views
Reloading /etc/profile - how to reload Unix /etc/profile - 4421 views
How to calculate difference in days between two dates in MySQL - 4381 views
Set up HTTP PROXY via command line in Linux/FreeBSD - 3663 views
   Latest 10 articles:
FreeBSD - Collect installed hard disk drive information - 19 Mar 2009
Set up FTP PROXY via command line in Linux/FreeBSD - 19 Mar 2009
Set up HTTP PROXY via command line in Linux/FreeBSD - 19 Mar 2009
Qmail relay to smarthost: How to route all mail to a smarthost - 03 Feb 2009
EXIM 4 relay to smarthost: How to route all mail except local domain - 03 Feb 2009
Windows XP: print LISTEN ports and network connections using netstat - 30 Jan 2009
qmail qmail-scanner/clamav qmail-inject: fatal: qq temporary problem / clamdscan: corrupt or unknown clamd scanner error or memory/resource/perms problem - exit status 512/2 - 05 Dec 2008
How to cut out first last n characters from each file name, from a filelist - 04 Nov 2008
Mozilla Firefox3 is now released - 18 Jun 2008
How to switch lower case to upper case and upper case to lower case in a string - 17 Jun 2008

Archives
» 2007  |  June  |  October  |  November  |  December
» 2008  |  January  |  February  |  March  |  April  |  May  |  June  |  November  |  December
» 2009  |  January  |  February  |  March


Home | Archives | Sitemap | About | Contact

Designed and developed by Andrei Manescu. Optimized for Mozilla Firefox.  
Copyright 2007 Andrei Manescu
All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by those who posted them.
Valid W3 Document Valid XHTML 1.0 Transitional Valid CSS! The FreeBSD Project Viewable With Any Browser