使用的.htaccess,prevent用户访问资源目录,但允许源$ C $ C接入资源 [英] Using .htaccess, prevent users from accessing resource directories, and yet allow the sourcecode access resources
问题描述
如果我的问题还不清楚,但我不是很了的行话道歉。通过资源目录我的意思是我的CSS,PHP脚本,图片,JavaScript等。
Apologies if my question is unclear, but I'm not quite up with the jargon. By 'resource directories' I mean my css, php scripts, images, javascript ect.
我包含我的图片目录中使用.htaccess文件
I used an .htaccess file in my images directory that contained
deny from all
做到这一点。虽然这$ P $打字www.example.com/images到他们的浏览器,并访问我的图片目录pvented人,停止图像出现在我的网站。
to do this. Though this prevented people from typing "www.example.com/images" into their browser and accessing my images directory, the images stopped appearing on my website.
我想这是因为.htaccess文件甚至拒绝访问该图片我的源$ C $ C。我怎样才能让我的源$ C $ C访问的目录?我也有一个cron作业运行PHP脚本,每一个夜晚。该cron作业也需要允许访问scripts目录。
I assume this is because the .htaccess file is even denying my source code from accessing the images. How can I let my source code access directories? I also have a cron job running a php script every night. The cron job also needs to be allowed to access the scripts directory.
此外,使用.htaccess文件即使是最好的办法,以确保一个网站?
Also, is using .htaccess files even the best way to secure a site?
推荐答案
要prevent有人来查看您的图片目录,你需要禁止目录列表
。
<一href="http://viralpatel.net/blogs/htaccess-directory-listing-enable-disable-allow-deny-$p$pvent-htaccess-directory-listing/">http://viralpatel.net/blogs/htaccess-directory-listing-enable-disable-allow-deny-$p$pvent-htaccess-directory-listing/
To prevent someone to view your images directory, you need to disallow Directory Listing
.
http://viralpatel.net/blogs/htaccess-directory-listing-enable-disable-allow-deny-prevent-htaccess-directory-listing/
您无法使用所有拒绝
,因为没有什么可以从Web浏览器的目录加载,所以你的图片,你对你的网站将不会加载加载无论是。
You cannot use deny from all
, because nothing can be loaded from that directory from a web browser, so your images which you load with on your website won't load either.
选项-Indexes
将禁止人们在图像目录中列出文件。请参阅<一href="http://viralpatel.net/blogs/htaccess-directory-listing-enable-disable-allow-deny-$p$pvent-htaccess-directory-listing/">http://viralpatel.net/blogs/htaccess-directory-listing-enable-disable-allow-deny-$p$pvent-htaccess-directory-listing/
Options -Indexes
will disallow people to list files in your images directory. Please see http://viralpatel.net/blogs/htaccess-directory-listing-enable-disable-allow-deny-prevent-htaccess-directory-listing/
有关由人应该不是你可以使用身份验证谁正在查看安全数据。您可以设置与htaccess的登录场,或脚本之一,例如PHP或者Python。
For securing data from being viewed by people who shouldn't you can use a authentication. You can setup a login field with htaccess, or script one with, for example PHP or python.
登录与htaccess的脚本: 脚本: <一href="http://www.htaccesstools.com/htpasswd-generator/">http://www.htaccesstools.com/htpasswd-generator/ 密码文件: <一href="http://www.htaccesstools.com/htaccess-authentication/">http://www.htaccesstools.com/htaccess-authentication/
Login script with htaccess: Script: http://www.htaccesstools.com/htpasswd-generator/ Password file: http://www.htaccesstools.com/htaccess-authentication/
这篇关于使用的.htaccess,prevent用户访问资源目录,但允许源$ C $ C接入资源的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!