Fully restrict access to sub-directories with .htaccess

.htaccessapache-2.2

With .htaccess, how can I block access to any sub-directories (and its contents) when they are accessed directly (using the browser's address bar for example)?

I'm on a shared host, so I do not have access to the main httpd.conf file. I realize I can simply put a file with "Deny from all" inside the sub-directories, but I'd like to do it from my single root .htaccess file.

Best Answer

<Directory /var/www/*>
     Order Deny,Allow
     Deny from All
</Directory> 

<Directory /var/www/>
     Order Allow,Deny
     Allow from All
</Directory>

Just a hunch, haven't tested it.

Related Solutions

Send 404 error code on forbidden directories

not a straight answer, but if you have php [ or other server side include scripting ] installed - you can use:

ErrorDocument 403 /404.php

and in 404.php have:

<?php
  header("HTTP/1.0 404 Not Found");
  //...

How to prevent apache from serving the .git directory

It's not working because you have 'svn' instead of 'git' in the rule. All you have to do is to replace the 'svn' with 'git'.

<Directorymatch "^/.*/\.git/">
  Order 'deny,allow'
  Deny from all
</Directorymatch>

Best Answer

Related Solutions

Send 404 error code on forbidden directories

How to prevent apache from serving the .git directory

Related Topic