m0gely wrote: >> Hiding the cvar is not useful <snip> > No, but it will stop *a lot* of other people.
My opinion is that it will stop very few people (jerks) who are actually doing this. >> I would say people with only FTP access should >> be allowed to use .htaccess > > > The last several posts tried to explain why .htaccess has nothing to > offer in this subject. Protecting the server from itself doesn't help > anyone. > You can use a .htaccess in any web directory to specify the same access rules (rewriting requests with a bad referrer to 403 might be a good idea) as long as the apache config allows .htaccess, and allows you to set those rules. So, while a user may not have access to the apache config, they should be able to use .htaccess to achieve the same thing. Mostly, this is the case. If it isn't, and you explain to your provider what's going on, they should be glad to help out. HTH, -- Richard _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds
