HOME > TIPS > PHP > PROTECT YOUR SUBDIRECTORIES


	TIPS
		WEB DESIGN
		HTML
		CSS
		JAVASCRIPT
		PHP
		MySQL
		SEO



	TUTORIALS
		WEB DESIGN
		HTML
		JAVASCRIPT
		PHP
		SEO



	RESOURCES
		ADD LINK
		LINK TO US



	TOP DIRECTORIES
	COMMENTS
	SUBSCRIBE
	PRIVACY POLICY
	SEARCH

Protect your subdirectories

Without an index.php or index.htm in your subdirectories, a user would be able to see all the files in your directory which can be a big security flaw. The way I plug this hole is to have index.php as my directory index. Then I make sure every directory on my site that doesn't already have an index.php has the file index.php with the following code:


<?php 

header("Location: http://www.redirecturl.com/"); 

?>

Obviously I use the domain of my site in the place of redirecturl.com. This has the effect of redirecting anyone to the website homepage if they try peeking in my subdirectories.
Comments

Comment by Caden on 2011-08-17
Right on-this helped me sort thngis right out.

NEWS

New tip: open link in new window

New resource: Internet Explorer downloads

New tip: start cursor in a form field

New tutorial: upload files using a HTML form

Directory of webmaster resources

New section: CSS tips

New tip: finding webpages to link to your site

Updated directory list

New Hexadecimal Color Chart

New tips on Alexa ranking & clean linkage