Please don't top post. On Jul 14, 2009, at 1:00 PM, ML wrote:
Hi Doug,So does that prevent crawling and browsing, but does allow if I click a link or include a file it will work?
No, it prevents the directory and all files within from being served by the webserver at all. Anything else is either half-secure or half- broken
I don't understand what you mean by "crawling", "browsing", and "include a file". They're really all the same thing: A client (be it Firefox or GoogleBot) is asking the webserver for something.
If you want to prevent the nice robots from asking for something, you can use a robots.txt file. This will not prevent naughty robots from asking for something.
On Jul 13, 2009, at 4:57 PM, Doug Bell wrote:On Jul 13, 2009, at 1:37 PM, ML wrote:Hello All, I am confused about directory permissions inside of my wwwroot/I am using name-based virtual hosting and I have y web root as / var/www/htmlAll of my websites are inside /var/www/html in their own directories.How can I i have a directory protected from crawlers indexing it? What is the right permission set?How can I have a directory that apache can use, but nobody can browse to?The reason is that I have PHP/MySQL Setup and I store all of my MySQL connection information and queries in a directory and I dont want people 'finding' this by simple browsing the website or using a web grabber to take a copy of the whole site.Can anyone provide insight?To prevent a directory from being served by the webserver, do this: <Directory /path/to/directory> Order allow,deny Deny from all </Directory> Put this block in your <VirtualHost> block. Doug Bell -- Senior Developer, Plain Black Corp. [ http://plainblack.com ] all that groks is ---------------------------------------------------------------------The official User-To-User support forum of the Apache HTTP Server Project.See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx---------------------------------------------------------------------The official User-To-User support forum of the Apache HTTP Server Project.See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
--------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|