On Sat, Jul 9, 2011 at 23:22, Stephan Beal <sgb...@googlemail.com> wrote:
> On Sun, Jul 10, 2011 at 4:25 AM, Tom Browder <tom.brow...@gmail.com> > wrote: > > > sqlite db files and making sure that directory is writable by my web > > server. I make sure that the directory is not used for anything else > > in order to help secure my web site. > > > > Another tip for such uses: > > .htaccess: > > <Files ~ "\.sqlite3$"> (or however your db is named) > Order allow,deny > Deny from all > </Files> > > so that people who know the db is there can't fetch it over http. > You should be able to put the folder for the database file(s) outside of the path available to access by url. 'above' or 'beside' the home / root folder. That way there is no way for someone to access it directly through a browser. Only code running on the server can access it. > > -- > ----- stephan beal > http://wanderinghorse.net/home/stephan/ > _______________________________________________ > sqlite-users mailing list > sqlite-users@sqlite.org > http://sqlite.org:8080/cgi-bin/mailman/listinfo/sqlite-users > _______________________________________________ sqlite-users mailing list sqlite-users@sqlite.org http://sqlite.org:8080/cgi-bin/mailman/listinfo/sqlite-users