Block access to your .htaccess file

**albo0210** · 28.09.11, 04:33

this code insert on the .htaccess ???

**standalone** · 28.09.11, 14:26

yes its on the .htaccess

**shakil420** · 29.09.11, 09:45

razzbe bro do u know .htaccess code that user can redirect ... url
mysite.com/username ++> mysite.com/index.php?user=username

**arnage** · 29.09.11, 12:35

Search for mod-rewrite, its solved hundreds times for pages and for users.

**stefudj** · 20.10.11, 20:04

Options +FollowSymlinks
RewriteEngine On
RewriteRule ^([a-zA-Z0-9_$\-]+)$ index.php?user=$1

**~~ogah~~** · 02.11.11, 06:11

Originally posted by razzbee View Post

The following code will prevent user to access your .htaccess file. Also, you can block multiple file type as well.

# secure htaccess file
<Files .htaccess>
order allow,deny
deny from all
</Files>

# prevent viewing of a specific file
<Files secretfile.jpg>
order allow,deny
deny from all
</Files>

# multiple file types
<FilesMatch ".(htaccess|htpasswd|ini|phps|fla|psd|log|sh)$ ">
Order Allow,Deny
Deny from all
</FilesMatch>

if already have this one:
<FilesMatch ".(htaccess|htpasswd|ini|phps|fla|psd|log|sh)$ ">
Order Allow,Deny
Deny from all
</FilesMatch>

this one is not necessary:
<Files .htaccess>
order allow,deny
deny from all
</Files>

**razzbee** · 25.09.13, 17:15

Originally posted by ogah View Post

if already have this one:
<FilesMatch ".(htaccess|htpasswd|ini|phps|fla|psd|log|sh)$ ">
Order Allow,Deny
Deny from all
</FilesMatch>

this one is not necessary:
<Files .htaccess>
order allow,deny
deny from all
</Files>

FilesMatch uses Regex so its recommended U use the correct and recommended code even though that will work but escape the dot (.)
the dot must be \.
so do this :

Code:

<FilesMatch "\.(htaccess|htpasswd|ini|phps|fla|psd|log|sh)$">
 Order Allow,Deny
 Deny from all
</FilesMatch>

Block access to your .htaccess file

Block access to your .htaccess file

Comment

Comment

Comment

Comment

Comment

Comment

Comment