Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: deny directly allow indirectly (.htaccess)
Top Forums UNIX for Dummies Questions & Answers deny directly allow indirectly (.htaccess) Post 302275801 by lifegeek on Monday 12th of January 2009 08:15:29 AM
Old 01-12-2009
deny directly allow indirectly (.htaccess)
I am running apache web server on CentOS5.2
I have the directory in which stores a lot of images.(/var/www/html/images)
I want to deny everyone from directly accessing the directory but still allow images in the directory to be used by HTML (/var/www/html/pic.html <img src="https://www.unix.com/images/hotimg.jpg">)

=>someone cannot access that specific directory directly.
1)create .htaccess in images directory
2)type following lines and save
order allow,deny
deny from all

but I don't know how to allow images in the directory to be used by HTML(pic.html <img src="https://www.unix.com/images/hotimg.jpg">)

thanks in advance
 

8 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

.htaccess?

For a schoolproject, I have to set up an intranet at a company headquarters in the Netherlands. But they want to give the division in the United States access to that intranet. I have to find out how to do that. I've heard that you can do that by giving certain people access to the intranet with... (1 Reply)
Discussion started by: Puc conDoin
1 Replies

2. UNIX for Dummies Questions & Answers

.htaccess

i want to protect a folder on my HP.... does the folder need more than ".htaccess" and ".htpasswd" to be protected , and ask for login and password??? Please help ...... i use HTAdmin 1.2.1 to manage my access files.. The systemadmin cant or wount answer.....:confused: Avenger (3 Replies)
Discussion started by: Avenger
3 Replies

3. Cybersecurity

htaccess

Something is wrong. I do everything right make the .htaccess file and stuff, but when I try the htpasswd command it says command not found. I use Putty SSH client and I think server is running RedHat 7.1 with Apache some version. HELP!!! (1 Reply)
Discussion started by: _hp_
1 Replies

4. Cybersecurity

Logging htaccess

hi i am trying to make a log of all users who access my website, i am using htaccess to administrate logins, how does htaccess store a session i.e where is the valid user login temporarily stored while a user is using the site or is there already some sort of logging being done by htaccess. ... (2 Replies)
Discussion started by: omnibarb
2 Replies

5. UNIX for Dummies Questions & Answers

ssh directly with a password

Can someone please tell me how to ssh into a computer when I have a username and password? Like something like: ssh username : pass @ server Can I do something like that directly? (6 Replies)
Discussion started by: Legend986
6 Replies

6. UNIX for Advanced & Expert Users

Redirect with htaccess

Hi, I would like to use htaccess 301 redirect with URL hiding. Ex: when browse the website 'abc.com' it should show the contents of the page 'xyz.com/start/index.html' but in addressbar should show the domain 'abc.com'. I know it works with html URL frame rewrite. But my question is it... (0 Replies)
Discussion started by: chandranjoy
0 Replies

7. Web Development

.htaccess redirect with #

I have the following directive in my .htaccess: #RewriteRule ^mozrank/?$ "http://www.seobook.com/#a_aid=dh" The problem is that the redirect is going to http://www.seobook.com/%23a_aid=dh How to preserve the # when redirecting? (2 Replies)
Discussion started by: rlopes
2 Replies

8. Shell Programming and Scripting

Download on a link doing it indirectly

How do I download on a link doing it indirectly, with once redirection by using curl commands or Bash script of them (2 Replies)
Discussion started by: abdan
2 Replies

LEARN ABOUT OPENDARWIN

upsset.conf

UPSSET.CONF(5)							    NUT Manual							    UPSSET.CONF(5)

NAME

       upsset.conf - Configuration for Network UPS Tools upsset.cgi

DESCRIPTION

       This file only does one job--it lets you convince upsset.cgi(8) that your system's CGI directory is secure. The program will not run until
       this file has been properly defined.

SECURITY REQUIREMENTS

       upsset.cgi(8) allows you to try login name and password combinations. There is no rate limiting, as the program shuts down between every
       request. Such is the nature of CGI programs.

       Normally, attackers would not be able to access your upsd(8) server directly as it would be protected by the LISTEN directives in your
       upsd.conf(5) file, tcp-wrappers (if available when NUT was built), and hopefully local firewall settings in your OS.

       upsset runs on your web server, so upsd will see it as a connection from a host on an internal network. It doesn't know that the connection
       is actually coming from someone on the outside. This is why you must secure it.

       On Apache, you can use the .htaccess file or put the directives in your httpd.conf. It looks something like this, assuming the .htaccess
       method:

	   <Files upsset.cgi>
	   deny from all
	   allow from your.network.addresses
	   </Files>

       You will probably have to set "AllowOverride Limit" for this directory in your server-level configuration file as well.

       If this doesn't make sense, then stop reading and leave this program alone. It's not something you absolutely need to have anyway.

       Assuming you have all this done, and it actually works (test it!), then you may add the following directive to this file:

	   I_HAVE_SECURED_MY_CGI_DIRECTORY

       If you lie to the program and someone beats on your upsd through your web server, don't blame me.

SEE ALSO

       upsset.cgi(8)

   Internet resources:
       The NUT (Network UPS Tools) home page: http://www.networkupstools.org/

Network UPS Tools						    05/22/2012							    UPSSET.CONF(5)
All times are GMT -4. The time now is 05:14 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy