Answer the question
In order to leave comments, you need to log in
R
R
Roman2018-04-06 11:14:12
Roman, 2018-04-06 11:14:12
Why doesn't .htacces ban execute php work?
The task would seem to be banal to the point of horror - to prohibit the execution of php in a certain folder of the site, for example: /upload/
I make .htaccess with the following content:
RemoveHandler .php
RemoveType .php
AddType application/x-httpd-php-source .php
Options -ExecCGI -Indexes
php_flag engine offand I throw it into the /upload/ folder
, I immediately put test.php there, which ... The pancake is wonderfully executed. And it is expected that it should not.
Allowoveride All for the parent folder is registered.
If I write badbird in my .htaccess - 500 pops out, i.e. The file is being processed.
Why, then, are the instructions to prohibit the execution of .php files not executed?
1 answer(s)
@Bluz
I
Ildar Saribzhanov, 2018-04-06 @Bluz
In my notes, these directives are indicated
# запретить доступ ко всем файлам
<FilesMatch ".*">
Order allow,deny
Deny from all
</FilesMatch>
# Разрешить доступ только к файлам определенного расшерения
<FilesMatch "\.(jpg|png|gif)$|^$">
Order deny,allow
Allow from all
</FilesMatch>
# Выключим php
php_flag engine 0
# для все стремных файлов сделаем тип html
RemoveHandler .*
AddType "text/html" .php .cgi .pl .fcgi .fpl .phtml .shtml .php2 .php3 .php4 .php5 .asp .jsp
Similar questions
G
R
I
W
WEBIVAN2012-08-13 19:28:04
Is it possible to change $_SERVER['REQUEST_URI'] in PHP via .htaccess?
2Reply
M
myskypesla2018-04-18 17:56:32
Who should deal with redirects as a programmer or SEO specialist?
1Reply
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question