<p>Securing Files and Directories</p>

skymx · July 14, 2010

uhh.. I was the one who found this insecurity! (((its not a flaw is a feature?)))

Mysterious Pilot · December 5, 2010

Hum that works fine in UNIX environments but in Windows hosting you cannot create a file called .htaccess.

mark1million · January 24, 2011

To stop leaching of your image files add this to the same file.

#disable hotlinking
RewriteEngine on
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(www\.)?PUT YOUR DOMAIN HERE/.*$ [NC]
RewriteCond %{HTTP_REFERER} !^http://(www\.)?forum.phpvms.net/.*$ [NC]
RewriteCond %{HTTP_REFERER} !^http://(www\.)?va-list.com/.*$ [NC]
RewriteRule \.(gif|png|jpg|js|css)$ - [F,NC]

Explained put your domain here is your website address, leave the ? so ?somedomain.com

If you want to allow other domains like i have then simply add them to the exception list.

phpvms and va-list.com, you can add as many as you like.

Kyle · February 13, 2011

If anyone wants suggested HTACCESS file, This is the one for the best security so you won't have sneakers in your files.....

# main page of the site
DirectoryIndex index.php

# prevent viewing of a specific file
<FilesMatch "\.(htaccess|htpasswd|ini|phps|fla|psd|log|sh|tpl)$">
Order Allow,Deny
Deny from all
</FilesMatch>

# prevent viewing of index
Options -Indexes

Sign In

<p>Securing Files and Directories</p>

User Feedback

Recommended Comments

skymx 1

Mysterious Pilot 19

mark1million 162

Kyle 400

Join the conversation