Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming Handling confidential files
Handling confidential files
  • El Forum
    Guest
  •  
#4
10-24-2008, 01:08 AM

[eluser]sl3dg3hamm3r[/eluser]
Thank you for all your thoughts!

[quote author="Colin Williams" date="1224804954"]Your thinking is spot on.[/quote]

Err.... Sorry I am note native in English and now not sure if this means "Watch out, pitfall" or "yeah that's cool so far". :gulp:

[quote author="Colin Williams" date="1224804954"]The file doesn't necessarily have to be outside of a public folder, you just need to insure PHP handles the request and serves the file, and not Apache.[/quote]

But then, if the files are located somewhere within the html-directory, I would definitely need to protect them with a htaccess, no? PHP only can handle it if it is called. If a file is called directly (assuming somebody found out path and filename), PHP has nothing to do with it anymore and can't give any protection.

Well, to store the files directly into the DB, that's actually also an option...


Messages In This Thread
Handling confidential files - by El Forum - 10-23-2008, 08:36 AM
Handling confidential files - by El Forum - 10-23-2008, 12:08 PM
Handling confidential files - by El Forum - 10-23-2008, 12:35 PM
Handling confidential files - by El Forum - 10-24-2008, 01:08 AM
Handling confidential files - by El Forum - 10-24-2008, 01:17 AM
Handling confidential files - by El Forum - 10-24-2008, 01:25 AM
Handling confidential files - by El Forum - 12-09-2009, 04:48 AM
Handling confidential files - by El Forum - 12-09-2009, 04:59 AM
Handling confidential files - by El Forum - 12-09-2009, 10:38 AM



Theme © iAndrew 2016 - Forum software by © MyBB