Ping a Specific Port

Question

Luke

Asked: 2009-06-04 13:01:37 +0800 CST2009-06-04 13:01:37 +0800 CST 2009-06-04 13:01:37 +0800 CST

How do I prevent directory browsing for all but valid users in .htaccess?

772

I'd like to allow directory browsing for users logged in via HTTP Basic authentication but prevent it for anonymous users. Is there a way to do this using .htaccess?

2 Answers

Voted

chaos · Answer 1 · 2009-06-04T13:05:31+08:00

Best Answer

chaos

2009-06-04T13:05:31+08:002009-06-04T13:05:31+08:00

RewriteEngine on
RewriteCond %{REMOTE_USER} =""
RewriteCond %{REQUEST_FILENAME} -d
RewriteCond %{REQUEST_FILENAME}/index.html !-f
RewriteCond %{REQUEST_FILENAME}/index.php !-f
RewriteRule .? - [F,L]

You'll need to chain together as many index.foo types as you use.

This is assuming that by 'logged in user' you mean someone logged in using HTTP BASIC authentication. If you mean someone logged in to a custom authentication mechanism, you'd need to hook a rewrite map into that, which probably isn't worth the effort; at that point I'd put an index.foo in all of my directories that checked for my custom authentication and sent an index or not, depending.

1

Christopher · Answer 2 · 2009-06-04T13:16:15+08:00

Christopher

2009-06-04T13:16:15+08:002009-06-04T13:16:15+08:00

http://httpd.apache.org/docs/2.0/howto/htaccess.html

Explains exactly how to do that. The Require parameter will be what you want to look at.

0

How do I prevent directory browsing for all but valid users in .htaccess?

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?