Edit /etc/httpd/conf/httpd.conf (this is where it is in default Mandrake,
anyway)
Remove "Indexes" from between any <Directory></Directory> that you don't
want indexing in - I just took them all out.
HTH
geo
-----Original Message-----
From: Michailov, Dimitar [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 28, 2001 11:37 AM
To: CF-Linux
Subject: OT: Directory browsing and permissions in Linux
Everybody:
I have a slightly OT question, I hope somebody would be able to help me.
I am currently playing with CF 4.5 under Redhat 6.2 with MySQL. Everything
seems to be working well, but there is a small security issue that I don't
seem to be able to find a solution so far. Apache seems to allow by default
directory browsing -- for example, if you have a folder
http://www.mysite.com/images/ that contains only images and no index files,
if somebody types in the URL of that folder they will see the contents of
the folder.
I would like to prevent users from seeing what files are in the folders.
Placing an index.html file in each folder is a solution to this problem, but
I think there might be a better solution with permissions, or maybe APACHE
settings. Can anyone help me with that?
Thanks,
Dimo Michailov
Certified Cold Fusion 4.5 Web Developer
USA-IT, Inc.
[EMAIL PROTECTED]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
------------------------------------------------------------------------------
Archives: http://www.mail-archive.com/cf-linux%40houseoffusion.com/
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_linux or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
