how to protect php file with .htaccess from downloading with php5 crashed

Question

Welcome To Ask or Share your Answers For Others

how to protect php file with .htaccess from downloading with php5 crashed

asked Jan 31, 2022 in Technique[技术] by 深蓝 (71.8m points)

Last night I made some admin changes to my webserver. I use php. The php processor failed after the update and if someone went to my homepage, the php page would simply download and show the proprietary code and password to anyone visiting. So I was wondering if there is a way to prevent any form of download for php files using .htaccess -- but still allow for normal viewing of the files.

See Question&Answers more detail:os

与恶龙缠斗过久,自身亦成为恶龙；凝视深渊过久,深渊将回以凝视…

467 views

1 Answer

深蓝 · Answer 1 · 2022-01-31T07:05:35+0000

A good pattern to follow during development is to use a minimal initialization file, which invokes the actual application which resides outside the webroot. That way only a minimal stub with no critical information is exposed in a case like this.

Simplified example:

/
  /app
    critical_code.php
  /webroot
    .htaccess   <- rewrites all requests to index.php
    index.php   <- invokes ../app/critical_code.php (or other files as requested)

Categories

how to protect php file with .htaccess from downloading with php5 crashed

Please log in or register to add a comment.

Please log in or register to answer this question.

1 Answer

Please log in or register to add a comment.

Just Browsing Browsing

Most popular tags