on-rev files

Alex Tweedly alex at tweedly.net
Tue Jun 9 18:48:53 EDT 2009


-= JB =- wrote:
> With on-rev you can put files into your public folder and anyone who 
> accesses
> your index can access your files.  When you move them up to your 
> on-rev site
> level nobody can see your files unless they have logged in as the 
> administrator.
>
> How secure is this?  Can people somehow access your files and 
> therefore it is
> not wise put anything on your site unless you consider it public but 
> know that if
> you move it up it does make it harder for people to access it?  Is 
> there a way to
> make your files secure with other programs?
Generally, you should keep files that you want on your default domain 
(i.e. for me that's www.alextweedly.on-rev.com ) within your public_html 
directory. That directory, and any sub-folders of it, will either be
    - a folder where you keep html and similar files
           and you should usually have a file called index.html (or 
index.irev, or index.php, ...)
           and any time someone accesses 
http://www.alextweedly.on-rev.com/ they see the index file's contents - 
so they
           can't get to your other files (except through links, or by 
knowing their names)
   - a folder you don't expect people to access directly
           either put in an index.html (...) to prevent access, or you 
can use the .htaccess file to directly prevent it.
           (see e.g. http://www.javascriptkit.com/howto/htaccess11.shtml 
for how to use this).

(Personally, I would always just create an index.irev (or index.html) in 
every directory :-)

-- Alex.
 



More information about the use-livecode mailing list