August 3rd, 2000, 02:13 AM
How can I protect my *.inc Files for reading throw the Clients-Browser? I would only have acces throw my php-scripts.
With the apache httpd.conf Option:
<Files ~ .inc>
deny from all
i can read it throw the Browser but also i can't read it with my php-scripts.
Wish you a great day
August 3rd, 2000, 02:32 AM
pwluky, i guess by placing the .inc files above the html directory. BUT this topic has been placed here before just a couple of days ago, I suggest you perform a search on the msgboard...
August 3rd, 2000, 03:00 AM
set the include path in the php.ini file to an external folder that is outside the main root directory and put all your include files in there.
August 3rd, 2000, 03:09 AM
August 3rd, 2000, 12:35 PM
and as well as the other suggestions - just rename your .inc file to .php or php3 - then even if someone finds it by accident they are not going to see anything worth looking at.