Need help with directory access 1

[sofetster]

I need to allow access to only certain files *_notsecure.php in the root redirectory and have them use all other files on the site. I do not want to let ohter files be served directly, only fron these *_notsecure.php.

I setup environment variable based on local Referer.

How can deny access to all files but 3 special ones once in the root directory. I tried <Directory>, <DirectoryMatch>, <Files> and <FileMatch> - nothing works. As soom as I deny access to the DocumentRoot I cannot see any files at all, as soon as I allow access I can see files in the subdirectories.

Please help.

Dan

 

[Wishdiak]

sofetster,

For Apache 2.x, take a look at

http://httpd.apache.org/docs/2.0/mod/core.html#files

Wishdiak
A+, Network+, Security+, MCSE: Security 2003

http://www.wishdiak.com

 

[sofetster]

The problem I have is this:

I would like to restrict certain file extenions in certain
directpries without htaccess, right from httpd.conf and looks like I failed to do so.

If I specify a rule for Referrer for php files then none of my php can be accessed from outside.

I use Apache 2.2 on Solaris 10 and looks like FileMatch does not take the path into consideration.