egoselfaxis
asked on
Is there any way to restrict the downloading of files within a subfolder using special .htaccess rules?
We have a bunch of client files sitting in a "uploads" folder on our Apache-based site. Although the directory itself is NOT browseable (403 forbidden - Directory Listing not allowed) ... the client has become concerned that the files themselves might be compromised somehow, .. or indexed by search engines.
Is there any way that we can apply special .htaccess rules to that uploads folder so that the files contained within it can only be downloaded using a PHP script (or something like that)? We're just looking for a way to secure those files somehow -- without having to reprogram the site so that the file uploads are stored and served up from outside the site root. Please advise.
Thanks
- Yvan
Is there any way that we can apply special .htaccess rules to that uploads folder so that the files contained within it can only be downloaded using a PHP script (or something like that)? We're just looking for a way to secure those files somehow -- without having to reprogram the site so that the file uploads are stored and served up from outside the site root. Please advise.
Thanks
- Yvan
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Refer to the article https://www.experts-exchange.com/OS/Linux/A_8789-How-websites-can-be-redirected.html. You may need some customization as per your requirement
Was there something wrong with this answer? Why did you mark it down to a "B"? What was missing?
http://www.javascriptkit.com/howto/htaccess.shtml
hope it helps