Posted by Andy Hassall on 01/13/06 21:15

On Fri, 13 Jan 2006 14:01:20 -0500, "Notgiven" <notreallyme@invalid.invalid>
wrote:

>I added an .htaccess file to the directory which disallowed access to:
> /directory/
>
>but I could still access
> /directory/files.gif

Looks like you need to post to alt.apache.configuration for the .htaccess file
then.

>I want to prevent someone stealing my flash files.
>
>I can put it in a directory outside the web root but having trouble making
>that work. The fiels are not displayed. Here's the directory structure I
>used for that effort:
>
> /d1
> /d1/images/file.swf
> /d1/www/site1(webroot)/d3/page.php
>
>Page.php needs to display file.swf in the directory structure above.

Then it needs to be in the web root, or a separate PHP script needs to output
its contents. You can't allow users to view a file without downloading it. Who
are you protecting this from? Who is allowed to view the file?

--
Andy Hassall :: andy@andyh.co.uk :: http://www.andyh.co.uk
http://www.andyhsoftware.co.uk/space :: disk and FTP usage analysis tool

[Back to original message]