.htaccess viewable on net to all
on our site... if you goto domain .com / .htaccess
the file is viewable on the net...
If i Chmod it to 640 - the site doesnt work
If i keep it at 644 it works but then anybody can see the file if they type in its url
what do i have to change to fix this? I'm assuming its a security risk...
I added the
require valid-user
to my .htaccess file....
Good news.. the .htaccess file comes up as 403 forbidden... BAD NEWS.. my site doesnt work - get a 500 server error...
This is whats in the .htaccess file....
RewriteEngine on
RewriteRule ^quixplorer.*$ - [L]
RewriteRule ^admin.*$ - [L]
RewriteRule ^paradise.*$ - [L]
RewriteRule ^upload.*$ - [L]
RewriteRule ^testing.*$ - [L]
RewriteRule ^client.*$ - [L]
RewriteRule ^_mmServerScripts.*$ - [L]
RewriteRule !\.(gif|jpg|png|css|swf)$ /home/username/public_html/index.php
and now in httpd.conf we have this:
<Files ~ "^\.ht">
Order allow,deny
Deny from all
</Files>
though... all these files are still viewable on the net. Thanks for any help guys....
