Menu
Community /Pin to ProfileBookmark
@NogDogApr 14.2006 — #If we're talking about a file which is only to be included by other PHP pages but is not to be accessed directly, the simplest thing is to put that file in a directory which is outside of the http document root. For instance, if on a Linux/UNIX system and your web documents are in or below the directory /home/yourname/public_html/, then you could create a directory such as /home/yourname/includes/ and put your include files there. Your scripts can still include files from a directory such as that, but web browsers cannot access it directly.
Indivdual page security, how?
I have 1 page that calls content from other pages inside another dir.
index.php?call_mod=1
the problem is if you were to type in the adress to that page, you could see it’s contents or the page would try to perform it’s function, this is very bad!
[url]http://www.mysite.com/moduledirectory/modulename.php
if you type that into the address bar, you will get the page. How do I stop this?
will chmod do this, if so which one allows scripts to call teh page but keeps a surfer from getting to the page?
I’ve tried using sessions and if statements and also defined(blah) but if you hit the page that sets teh session or definition, you can then locate the page, kinda useless.
what’s the way to do this? i thought about maybe an if else that would checking the referring page, and if it’s not the index page then you would be redirected, but I am not sure the best way, so could give me some advice?
thx!
Sign in
to post a comment9 Comments(s) ↴
0
@NogDogApr 14.2006 — #