On Sat, December 2, 2006 5:31 am, Tony Marston wrote: > If you site administrator thinks that using an htaccess file is a > security > issue then he is very much mistaken. The directives in an htaccess > file DO > NOT enable you to access any one else's data on a shared server. All > they do > is apply additional settings to your own site while leaving UNTOUCHED > the > settings being used by other sites. > > Most professional web hosting companies do not have an issue with > htaccess > files, so if yours does I would suggest switching to one with a more > professional attuitude. I think it is quite possible for a sysAdmin to configure AllowOverride and .htaccess in such a way that "too much" latitude is granted to their clients to access each others' data... And there is alleged to be a significant performance loss to .htaccess, so a hurried sysAdmin may have over-simplified their decision process... At any rate, if you need .htaccess, and they don't want to provide it, there are a few thousand webhosts that do. I certainly wouldn't sign up with a host that didn't provide it, and would move to one that did ASAP if I found myself using one that didn't provide that. Actually, I'd settle for a way to schedule a "push" of an approved change into their httpd.conf (or include files thereof) for my site's VirtualHost directive, but I suppose that's a lot to ask of a host... :-) -- Some people have a "gift" link here. Know what I want? I want you to buy a CD from some starving artist. http://cdbaby.com/browse/from/lynch Yeah, I get a buck. So? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
