Return-Path: 
 <users-return-89477-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: (qmail 84563 invoked from network); 13 Jul 2009 23:57:42 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3)
  by minotaur.apache.org with SMTP; 13 Jul 2009 23:57:42 -0000
Received: (qmail 25724 invoked by uid 500); 13 Jul 2009 23:57:49 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 25663 invoked by uid 500); 13 Jul 2009 23:57:48 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 25654 invoked by uid 99); 13 Jul 2009 23:57:48 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 13 Jul 2009 23:57:48 +0000
X-ASF-Spam-Status: No, hits=1.2 required=10.0
	tests=SPF_NEUTRAL
X-Spam-Check-By: apache.org
Received-SPF: neutral (nike.apache.org: local policy)
Received: from [72.1.4.143] (HELO mail.commctrl.com) (72.1.4.143)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 13 Jul 2009 23:57:36 +0000
Received: from [192.168.202.46] (unknown [192.168.202.46])
	by mail.commctrl.com (Postfix) with ESMTP id 0E67443BF
	for <users@httpd.apache.org>; Mon, 13 Jul 2009 18:57:10 -0500 (CDT)
Message-Id: <A4C357DD-BB46-4ED6-953F-62090149311F@plainblack.com>
From: Doug Bell <doug@plainblack.com>
To: users@httpd.apache.org
In-Reply-To: <9D4678C6-DD07-4763-BFE9-3D3C814BD750@MailNewsRSS.com>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v935.3)
Date: Mon, 13 Jul 2009 18:57:09 -0500
References: <9D4678C6-DD07-4763-BFE9-3D3C814BD750@MailNewsRSS.com>
X-Mailer: Apple Mail (2.935.3)
X-Virus-Checked: Checked by ClamAV on apache.org
Subject: Re: [users@httpd] Directory Permssions

On Jul 13, 2009, at 1:37 PM, ML wrote:

> Hello All,
>
> I am confused about directory permissions inside of my wwwroot/
>
> I am using name-based virtual hosting and I have y web root as /var/ 
> www/html
>
> All of my websites are inside /var/www/html in their own directories.
>
> How can I i have a directory protected from crawlers indexing it?  
> What is the right permission set?
>
> How can I have a directory that apache can use, but nobody can  
> browse to?
>
> The reason is that I have PHP/MySQL Setup and I store all of my  
> MySQL connection information and queries in a directory and I dont  
> want people 'finding' this by simple browsing the website or using a  
> web grabber to take a copy of the whole site.
>
> Can anyone provide insight?


To prevent a directory from being served by the webserver, do this:

<Directory /path/to/directory>
     Order allow,deny
     Deny from all
</Directory>

Put this block in your <VirtualHost> block.

Doug Bell -- Senior Developer, Plain Black Corp.
[ http://plainblack.com ]
all that groks is



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org