Thread: restricting access to folders on server
View Single Post
  #1 (permalink)  
Old Mar 24th, 2008, 10:36
sudhakararaog sudhakararaog is offline
Junior Member
Join Date: Dec 2007
Location: auckland
Age: 33
Posts: 25
Thanks: 0
Thanked 0 Times in 0 Posts
restricting access to folders on server
i am using apache server and presently when i try accessing any folders of my website i am able to
browse the files ex = www.website.com/images which is a serious security risk as i am building a
forum website using php and mysql.

in the root directory i have created a .htaccess file and whenever someone access a file which is not
on the server i have created a user friendly message that the file does not exist instead of a 404
error message displayed by the browser.

similar to this how can i go about restricting users to browse all my folders in the toot directory.

if anyone accesses for ex = www.website.com/phpscripts an alert should appear asking them to enter a username and password.

1. how can i do this using apache.
2. where do i write the username and password information and will this apply to all the folders in

the root directory or specific directories.

please advice.

thanks.
Reply With Quote