Look into the PHP_AUTH_USER variable. It is assigned through basic

Gary Every
Sr. UNIX Administrator
Ingram Entertainment
(615) 287-4876
"Pay It Forward"

-----Original Message-----
From: bmw [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 20, 2002 2:48 AM
Subject: [PHP-DB] securing directory tree and allowing PHP to work

I am trying to find out how I can secure the directory tree of my PHP
scripts from the HTTP server without preventing access to my PHP scripts
once in session. Right now, if I type the URL of a subdirectory of my site,
I get the index of all the files and directories.


http://domaine/index.html  has DB access user login and password for my
session authentication to enter into my scripts and run the program.

If I type http://domaine/subfolder/ I can see all the PHP code I want
without logging into my site. How can I protect the server from doing this
without busting access to my scripts through the login from the root level

Apache/1.3.26 (Unix)/Linux mod_fastcgi/2.2.12 mod_perl/1.26
PHP 4.2.2


Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.381 / Virus Database: 214 - Release Date: 02/08/2002

PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to