I just have just found this article, that describes this technique:
http://apachetoday.com/mailprint.php3?action=pv<sn=2000-06-14-002-01-PS#SetEnvIf
Thank you all for your help. :-))
S
>From: Maxwell Hung <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: [PHP] I
[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: [PHP] Insecurity with PHP authorization
>Date: Tue, 7 Aug 2001 11:22:33 +0100 (BST)
>
>Hi Stefan
>
>You can do this
>
>#Add this httpd.conf N.B apache > 1.3.12
>SetEnvIfNoCase Referer "^http://www.mysite/
> -Original Message-
> From: Stefen Lars [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, August 07, 2001 3:03 AM
> To: [EMAIL PROTECTED]
> Subject: [PHP] Insecurity with PHP authorization
>
>
> I do realize that if I were to place a .htaccess file in the
> root of the intranet server, I cou
en Lars
> Cc: [EMAIL PROTECTED]
> Subject: Re: [PHP] Insecurity with PHP authorization
>
>
> If you don't have a very high load, then you could move all not-php-files
> out of htdocs-root and use a pseudo-root directory
> htdocs/../rawfiles as root
> for redirect.php.
&g
If you don't have a very high load, then you could move all not-php-files
out of htdocs-root and use a pseudo-root directory htdocs/../rawfiles as root
for redirect.php.
For example image.jpg is placed in htdocs/../rawfiles/images then access it
with /redirect.php?/images/image.jpg !
redirect.php
5 matches
Mail list logo
