TalkPHP - View Single Post

RobertK · 01-09-2008, 02:17 PM

No! Don't mess with it unless you understand it! Wait a few while I edit an explanation into this post.

---

Okay, the .htaccess in the secure directory should read:

Code:

Deny from all

This means any database dumps that remain there cannot be access directly by HTTP, cURL, or like methods. This forces the download to route through the script, which I gave you a sample of above.

The download is forced by telling the browser that the file is an attachment, meaning "download this", and not .htaccess. The .htaccess file is for your security and preventing circumvention of your security.

01-09-2008, 02:17 PM	#4 (permalink)
RobertK The Addict Join Date: Jan 2008 Location: USA Posts: 217 Thanks: 16	No! Don't mess with it unless you understand it! Wait a few while I edit an explanation into this post. --- Okay, the .htaccess in the secure directory should read: Code: Deny from all This means any database dumps that remain there cannot be access directly by HTTP, cURL, or like methods. This forces the download to route through the script, which I gave you a sample of above. The download is forced by telling the browser that the file is an attachment, meaning "download this", and not .htaccess. The .htaccess file is for your security and preventing circumvention of your security. __________________ Programmers are in a race with the Universe to create bigger and better idiot-proof programs, while the Universe is trying to create bigger and better idiots. So far the Universe is winning. - Rich Cook