Ways to prevent Apache from serving a folder?

JudgementDay · 02-09-2012, 05:17 AM

What are some ways to prevent Apache from serving a folder in the root directory?

I have raw data in there containing PHP with passwords for my SQL database, and I don't want it being served up.

I'm thinking just .htaccess with a password.

Is it possible to do within my servers configuration file?

I want to hear what other people would do.

KuriosJon · 02-09-2012, 01:41 PM

I wouldn't put any passwords in any web accessible directory, period. Move them outside your web root; php can still access those files where a random web user can't.

primefalcon · 02-09-2012, 02:34 PM

I agree with above post fully, but if you really want to use .htaccess you can create a .htaccess file in the folder you don't want entry past that contains the following only

Code:

deny from all