Labels

Android (1) bash (2) boost (2) C (34) C++ (2) cheatsheet (2) CLion (6) css (3) Debian (33) DL (17) Docker (2) Dreamweaver (2) Eclipse (3) fail2ban (4) git (5) GitHub (4) Hacking (3) html (8) http (1) iOS (1) iPad (1) IRC (1) Java (31) javascript (3) Linux (167) Mac (19) Machine Learning (1) mySQL (48) Netbeans (4) Networking (1) Nexus (1) OpenVMS (6) Oracle (1) Pandas (3) php (16) Postgresql (8) Python (9) raid (1) RedHat (14) Samba (2) Slackware (47) SQL (14) svn (1) tar (1) ThinkPad (1) Virtualbox (3) Visual Basic (1) Visual Studio (1) Windows (2)

Sunday, 3 February 2019

Protecting a directory with htaccess

Password protect directory with htaccess


Create a .htaccess file in the folder you with to protect with the following:

AuthName "Members Area"
AuthType Basic
AuthUserFile /path/to/your/directory/.htpasswd
require valid-user

chmod it to 755

NOTE: you can also have require user tom dick harry

Note: The .htpasswd file can be /etc/passwd

We then need to create the .htpasswd file;

htpasswd -c .htpasswd your-user-name

chmod it to 644
TO BE VERIFIED

Preventing indexes

Create a .htaccess file in the folder you with to protect with the following:

Options -Indexes

chmod it to 755

The http.conf file can also be modified, finding Options.

The example below shows the configuration for all www.* websites on one of my servers and in this case allows indexes but the word Indexes can simply be removed;

<Directory "/var/www/www.*">
Options Indexes FollowSymLinks
AllowOverride AuthConfig
Require all granted
</Directory>


Posted by at

No comments:

Post a Comment

Note: only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)