: If file name starts with ".ht" is it available from outside? Someone told me that I can store MySQL passwords in a plain-text file in the web root, all I have to do is to give it a name

Someone told me that I can store MySQL passwords in a plain-text file in the web root, all I have to do is to give it a name starting with .ht (other than .htaccess). Is it so?

10.01% popularity Vote Up Vote Down

: Can Joomla and Wordpress use same MySQL database? I have a Joomla site installed at domain.com/fresh. Now, I want to install WordPress. I am planning to install WordPress under subdirectory "information";

@Si4351233

Posted in: #Joomla #Wordpress

1 Comments

: How to motivate visitors to comment At first I must apologize, because I am not sure if this question is valid for webmasters topic. I deal with the problem as being webmaster, however, i

@Si4351233

Posted in: #Comments #Marketing #Visitors

3 Comments

: How to track pixel density with Google Tag Manager I originally had it setup like How to see pixel density (Retina) in Google Analytics? with Universal Analytics by setting custom demisions.

@Si4351233

Posted in: #GoogleAnalytics #GoogleTagManager #UniversalAnalytics

0 Comments

: How Do Google RDF Bots React to Multistore, Possibly With Shared Products/Reviews? We enabled RDF everywhere on a corporate multistore setup using a popular ecom platform aprx 1 month ago. All

@Si4351233

Posted in: #Https #Microdata #MultipleDomains #RichSnippets

1 Comments

Login to post a comment!

1 Comments

Sorted by latest first Latest Oldest Best

@Heady270

That would depend on your webserver configuration. Many webservers do come configured that way.

Here is a snippet from /etc/apache2/apache2.conf on my Ubuntu Linux webserver:

#
# The following lines prevent .htaccess and .htpasswd files from being
# viewed by Web clients.
#
<FilesMatch "^.ht">
Require all denied
</FilesMatch>

Your webserver would have to have similar configuration installed to deny acces to files that start with .ht.

I would recommend storing sensitive data outside the web root. That way you don't have to rely on the web server configuration to protect it.

If you have to have it in the web root, naming it to start with .ht could work. You could also add your own FilesMatch directive to your .htaccess file to disallow access to any file name you choose.

10% popularity Vote Up Vote Down

Feed

: If file name starts with ".ht" is it available from outside? Someone told me that I can store MySQL passwords in a plain-text file in the web root, all I have to do is to give it a name

More posts by @Si4351233

: Can Joomla and Wordpress use same MySQL database? I have a Joomla site installed at domain.com/fresh. Now, I want to install WordPress. I am planning to install WordPress under subdirectory "information";

: How to motivate visitors to comment At first I must apologize, because I am not sure if this question is valid for webmasters topic. I deal with the problem as being webmaster, however, i

: How to track pixel density with Google Tag Manager I originally had it setup like How to see pixel density (Retina) in Google Analytics? with Universal Analytics by setting custom demisions.

: How Do Google RDF Bots React to Multistore, Possibly With Shared Products/Reviews? We enabled RDF everywhere on a corporate multistore setup using a popular ecom platform aprx 1 month ago. All

Login to post a comment!

1 Comments

Back to top | Use Dark Theme