https://www.zen-cart.com/tutorials/index.php?article=235
My problem is outlined in the article above. Unfortunately my web host (Streamline.net) Have been about as useful as a chocolate teapot.
My question is this : Without htaccess how can I prevent direct browser access to restricted php files?
Results 1 to 6 of 6
-
16 Jan 2008, 03:43 PM #1
New Zenner
- Join Date
- Jan 2008
- Posts
- 5
- Plugin Contributions
- 0
Secure php files without using htaccess?
-
16 Jan 2008, 03:48 PM #2
Totally Zenned
- Join Date
- Oct 2006
- Posts
- 5,477
- Plugin Contributions
- 11
Re: Secure php files without using htaccess?
Huh? Disallow php access = shutdown the wholecart since ZC runs on PHP.
I no longer provide installation support on forum for all my modules. However, if there are real bugs with the modules please feel free to contact me
-
16 Jan 2008, 04:17 PM #3
New Zenner
- Join Date
- Jan 2008
- Posts
- 5
- Plugin Contributions
- 0
Re: Secure php files without using htaccess?
My question is this : Without htaccess how can I prevent direct browser access to restricted php files?
I understand that Zen cart runs on php. Those files are accessed by scripts, not by pointing your browser directly towards them. Htaccess files uploaded to directories that contain php files prevent direct accessing them in this way. However Streamline will not allow me to use the "limit" keyword in my htaccess file rendering it functionally useless.
Did you read the article?
https://www.zen-cart.com/tutorials/index.php?article=235
I posted it for a reason. The issue is outlined in there.
-
9 Jan 2010, 06:33 AM #4
New Zenner
- Join Date
- Oct 2009
- Posts
- 26
- Plugin Contributions
- 0
Re: Secure php files without using htaccess?
I need help (and not just from my zen cart......)
Today I tried installing a SEO mod which included creating a .htaccess file in the main directory of the shop (where index.php lives) : from that time onwards I can access the store OK but can't get into admin. I have since pulled right back - deleted the .htaccess retored the /admin and /includes directory for any overwrites.
I still can't access admin and get a HTTP 500 error. Digging around I don't have a .htaccess file int he /admin and /admin/includes directory as per the download - so tried copying them across without any luck.
I can access the store and log in so think the SSL side of things is OK. If anyone has any ideas I'm happy to give anything a shot. Have fired off email to web service providers but its the weekend and very quiet......help please !!!!
The site is www.adorablebabycakes.com.au
version 1.3.8a
-
9 Jan 2010, 07:16 AM #5
New Zenner
- Join Date
- Oct 2009
- Posts
- 26
- Plugin Contributions
- 0
Re: Secure php files without using htaccess?
OK its fixed.......when I restored my site there were still some of the add on files there.......
Out of interest which .htaccess files should be on the site from the install package ? I can't remember deleting them.
-
9 Jan 2010, 07:54 AM #6
Inactive
- Join Date
- Oct 2006
- Location
- Alberta, Canada
- Posts
- 4,571
- Plugin Contributions
- 1
Re: Secure php files without using htaccess?
I do believe the default files have 3.
includes/.htaccess
admin/.htaccess
admin/includes/.htaccess
Would be a good idea to have a untouched copy of the default install on your computer, for an easy place to reference.
Similar Threads
-
suPHP and .htaccess files > php.ini
By Servelan in forum Installing on a Linux/Unix ServerReplies: 2Last Post: 30 Aug 2011, 05:00 AM -
Using .htaccess files to protect against unwanted snooping
By lieven23 in forum General QuestionsReplies: 7Last Post: 6 Mar 2010, 06:56 PM -
How do I download MP3 files without launching the player? Without using ZC
By rhormaza in forum General QuestionsReplies: 1Last Post: 23 May 2009, 03:11 AM
Bookmarks