""Richard Lynch"" <ceo@xxxxxxxxx> wrote in message news:63703.209.254.223.2.1165095595.squirrel@xxxxxxxxxxxxxxxx > On Sat, December 2, 2006 5:31 am, Tony Marston wrote: >> If you site administrator thinks that using an htaccess file is a >> security >> issue then he is very much mistaken. The directives in an htaccess >> file DO >> NOT enable you to access any one else's data on a shared server. All >> they do >> is apply additional settings to your own site while leaving UNTOUCHED >> the >> settings being used by other sites. >> >> Most professional web hosting companies do not have an issue with >> htaccess >> files, so if yours does I would suggest switching to one with a more >> professional attuitude. > > I think it is quite possible for a sysAdmin to configure AllowOverride > and .htaccess in such a way that "too much" latitude is granted to > their clients to access each others' data... I disagree. What directives can give you access to other people's data? > And there is alleged to be a significant performance loss to > .htaccess, so a hurried sysAdmin may have over-simplified their > decision process... "Alleged" is the word. Where are the figures to support this? While there is "some" performance loss, with the speed of today;'s PCs can this really be considered as "significant"? > At any rate, if you need .htaccess, and they don't want to provide it, > there are a few thousand webhosts that do. Exactly. So it canno be that much of a problem. > I certainly wouldn't sign up with a host that didn't provide it, and > would move to one that did ASAP if I found myself using one that > didn't provide that. I agree absolutely. -- Tony Marston http://www.tonymarston.net http://www.radicore.org -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
