How bout an Apache redirect for .inc files to go to denied.htm or
something? PHP scripts could get to them, but they wouldn't be accessible
via http.
At 08:01 PM 3/3/01 +0100, [EMAIL PROTECTED] wrote:
Hi!
as I wrote in my mail:
1.
I won't name them ".inc" but ".inc.php" (so *I* know, it's
Hi!
As I wrote before, I don't have .htaccess nor access to the apache-conf!!!
michi
How bout an Apache redirect for .inc files to go to denied.htm or
something? PHP scripts could get to them, but they wouldn't be accessible
via http.
At 08:01 PM 3/3/01 +0100, [EMAIL PROTECTED]
Hi!
I want my include-files not be seen from outside AND not be executed!!!
I don't have access to a directory outside DOCUMENT_ROOT and I don't
have
.htaccess!!!
I think about something like:
1.
name: file.inc.php
2.
add code:
if ($PHP_SELF==MY_NAME) exit;
as first
Include files do not have to end with '.inc', which is purely a convention
of dubious value. If you use '.php' as the extension for included files,
they will have to be parsed by PHP and can't be read as plain text from
outside.
Mick
On Sat, 3 Mar 2001 [EMAIL PROTECTED] wrote:
Hi!
I want
Hi!
as I wrote in my mail:
1.
I won't name them ".inc" but ".inc.php" (so *I* know, it's an include file)
2.
I don't even want them to be executable!!!
and therefore my question was, if this (on top of every include-file) would
be safe enough:
if (substr($SCRIPT_URL,-8)==".inc.php") exit;
Hi!
I want my include-files not be seen from outside AND not be executed!!!
I don't have access to a directory outside DOCUMENT_ROOT and I don't have
.htaccess!!!
I think about something like:
1.
name: file.inc.php
2.
add code:
if ($PHP_SELF==MY_NAME) exit;
as first line in the
6 matches
Mail list logo
