I have a flash app that accesses .xml files.
The source is viewable and some creative crackers have figured out how to
meld a url together to get vital information from those .xml's.
I need to prevent the web client from directly accessing them.
Is there a directive (such as Apache's) or mechnisim to keep web clients
from accessing yet allow my app access these files?
Allow from <some file name>
Deny from all
<some other web trick>
in zope.conf or ???
Zope maillist - Zope@zope.org
** No cross posts or HTML encoding! **
(Related lists -