WordPress is a very popular option for running your web site and can be used to get your content online quickly for the world to see. This guide will walk you through installing the WordPress server software and the initial setup process.
Course Of The Month
Become a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Apache Deny Access to Folder/Contents
Posted on 2009-04-01
I have a directory on my server which contains PHP and image files.
I would like to be able to deny access to everything but the image files, the user should see a 403 if they try to access anything other then an image.
They should also not be able to see the index of page.
I have attached my sample code below it correctly denies access to documents but doesn't allow me to access the images.
The rule needs to apply to all documents folder, they could be located directly under the root or in subdirectories.
Expected output should be something like:
documents/folder/ Deny
documents/folder/image.jpg
sub/documents/folder/image
documents/folder/ Deny
documents/folder/bad.bad Deny
sub/directory/folder/bad.b
I would like to be able to deny access to everything but the image files, the user should see a 403 if they try to access anything other then an image.
They should also not be able to see the index of page.
I have attached my sample code below it correctly denies access to documents but doesn't allow me to access the images.
The rule needs to apply to all documents folder, they could be located directly under the root or in subdirectories.
Expected output should be something like:
documents/folder/ Deny
documents/folder/image.jpg
sub/documents/folder/image
documents/folder/ Deny
documents/folder/bad.bad Deny
sub/directory/folder/bad.b
<Directory ~ "documents">
Order allow,deny
Deny from all
</Directory>
<FilesMatch "documents(.*?)\.(gif|jpe?g|png)$">
Allow from all
</FilesMatch>
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
3
5 Comments
You can not deny access for a folder but then have access to a file in the folder. Instead of setting "deny" for the folder just remove the browse right from the folder.
You're on apache 2.x?
# httpd.conf
# match documents/ except .jpg or .png etc. at the end
<Directory ~ "documents/.*+(?<!\.jpg|\.png|\.gif)$">
Order allow,deny
Deny from all
</Directory>
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
When crafting your “Why Us” page, there are a plethora of pitfalls to avoid. Follow these five tips, and you’ll be well on your way to creating an effective page.
Dramatic changes are revolutionizing how we build and use technology. Every company is automating, digitizing, and modernizing operations. We need a better, more connected way to work together as teams so we can harness the insights from our system…
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions.
Consider email address RFCs:
Look at HTML5 form input element (with type=email) regex pattern:
T…
The viewer will learn how to dynamically set the form action using jQuery.
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month5 days, 21 hours left to enroll
627 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.