On Mon, Jul 11, 2011 at 01:18, H. Phil Duby <phild...@phriendly.net> wrote: > On Sat, Jul 9, 2011 at 23:22, Stephan Beal <sgb...@googlemail.com> wrote: > >> On Sun, Jul 10, 2011 at 4:25 AM, Tom Browder <tom.brow...@gmail.com> >> wrote: >> >> > sqlite db files and making sure that directory is writable by my web >> > server. I make sure that the directory is not used for anything else >> > in order to help secure my web site. >> > >> >> Another tip for such uses: >> >> .htaccess: >> >> <Files ~ "\.sqlite3$"> (or however your db is named) >> Order allow,deny >> Deny from all >> </Files> >> >> so that people who know the db is there can't fetch it over http. >> > > You should be able to put the folder for the database file(s) outside of the > path available to access by url. 'above' or 'beside' the home / root > folder. That way there is no way for someone to access it directly through > a browser. Only code running on the server can access it.
And that is exactly what I did. Best regards, -Tom P.S. So far sqlite is performing admirably on my site--so much easier for certain uses. _______________________________________________ sqlite-users mailing list sqlite-users@sqlite.org http://sqlite.org:8080/cgi-bin/mailman/listinfo/sqlite-users
