Back to search

How to Protect your Images and TMP Directories.


Most websites require their images and tmp directories to have Full Write Access. This is in order to store files that are generated by the website itself.

Occasionally there are vulnerabilities in the website's own code. These vulnerabilities can allow a 'hacker' to upload their PHP, or Perl scripts into the affected directories. These files are designed to exploit the website, e.g. to send out massive email spamming campaigns.

TO AVOID THIS:
Create an .htaccess file with the following content and save it in each of the directories that you wish to secure.


<files "*.php"="">
Deny from all
</files>

<files "*.pl"="">
Deny from all
</files>

Allow from all
Was this answer helpful?      

Also Read

I want to Test my Website Live, but I don't want the public to see it.
A 'Coming Soon' or 'Under Construction' page, is a placeholder page used to block public viewing...
How to install Textpattern from Softaculous
This demonstration will show you how to install Textpattern from Softaculous. 1 Click...
Searching through a database with phpMyAdmin
This tutorial assumes you've already logged in to phpMyAdmin Now let's learn how to use the...
Inserting fields into database tables with phpMyAdmin
This tutorial assumes you've already logged in to phpMyAdmin Now let's learn how to insert...