How to Protect your Images and TMP Directories.

Back to search


Most websites require their images and tmp directories to have Full Write Access. This is in order to store files that are generated by the website itself.

Occasionally there are vulnerabilities in the website's own code. These vulnerabilities can allow a 'hacker' to upload their PHP, or Perl scripts into the affected directories. These files are designed to exploit the website, e.g. to send out massive email spamming campaigns.

TO AVOID THIS:
Create an .htaccess file with the following content and save it in each of the directories that you wish to secure.


<files "*.php"="">
Deny from all
</files>

<files "*.pl"="">
Deny from all
</files>

Allow from all

Also Read

Managing files in FileZilla
This tutorial assumes you already have FileZilla running on your computer and are connected to a...
Managing files in Leap FTP
This tutorial assumes you already have Leap FTP running on your computer and are connected to a...
Becoming familiar with databases in phpMyAdmin
This tutorial assumes you've already logged in to phpMyAdmin Now let's familiarize ourselves...
Does your email data count on the hosting plan?
Yes, all your email traffic will be included in your monthly bandwidth and disk space usage.