On Tue, 28 Aug 2001 23:38:30 +1000, "Jason Brooke" <[EMAIL PROTECTED]> wrote:

>if you're using apache, something along the lines of the following untested
>directives should prevent anyone but the localhost (which is where your
>virtual() calls should be coming from) from accessing the cgi's via http
><Directory /path/to/usr/cgi>
>order deny, allow
>deny from all
>allow from localhost

We don't define any virtual hosts in httpd.conf; instead, we use a
custom handler hooked into post-read-request.  So I won't be able to
define "/path/to/usr/cgi" in httpd.conf.

But if that concept will work in user .htaccess files, it would be an
improvement over my current techniques.  I'll give it a try ...

Thanks for the idea!


PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to