Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Can I stop people reading my config files?

config files people Reading
0
Posted

Can I stop people reading my config files?

0 CommentsAdd a Comment

1 Answer

0

Depends on your webserver. If you’ve got Apache for instance, you can stop people reading files with the directive. With IIS, you can put your config files in a directory and remove Read permission for the directory using the IIS management console. Check out your server’s documentation to see how. A more unpleasant method of hiding your config files is to wrap them up as something that is already handled by the webserver (eg. an .asp file on IIS or a .php). eg. Concealing the config as an .asp file: Call you config file something like config.asp, and wrap its contents in ASP markers (<% ... %>). The non-Soupermail config lines need to be commented with # characters. #<% mailto: myemail@example.net subject: this is pretending to be an asp file # %> Version 1.0.8 has a private configuration path, allowing you to store config files outside your webserver tree.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123