Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
What is the best practice to disable directory browsing on an apache2 webserver? I am thinking disabling this at the httpd.conf would restrict browsing even if somebody gained access to the .htaccess file on the webserver and enabled directory browsing? Thoughts?
It’s simpler via the server config but htaccess is often the only way. Especially on shared hosting.
If someone manipulates the htaccess file you don’t need to protect your files. In that case it is already too late.