Jump to content
dev osCommerce
Forum
  • Checkout
  • Login
  • Contact Us
  • Get in touch

osCommerce

The e-commerce.

New Demo
Our Partners

How to disable viewing of ...store/catalog/images

stiksandstones

By stiksandstones
in General Support

Recommended Posts

rhinozzz

rhinozzz

Posted
Posted
now you can type in store.myshop.com/images and see the full directory of all my images, should I be concerned?

I would rather people not see this. Thanks

You can just add an index.html to the directory that way anyone trying to view it will only be able to see the html you created. I think you can also control this with an .htaccess file but cant think of it right off hand. Normally the solution is to have an index.html in any directory that has images that way if someone types in store.myshop.com/images the will see the html and not the directory and all that is in it.

i wouldn't think you would need to be to concerned but would definitely put it on a list of to-do's also do a search for .htaccess and hotlinking that way even if you have an index.html people can still use the picture on their website by using store.myshop.com/images/theimage.jpg and the htaccess can prevent this i think it is set up to restrict only access from your webserver.

I hope this helped

stiksandstones

stiksandstones

Posted
  • Author
Posted
You can just add an index.html to the directory that way anyone trying to view it will only be able to see the html you created. I think you can also control this with an .htaccess file but cant think of it right off hand. Normally the solution is to have an index.html in any directory that has images that way if someone types in store.myshop.com/images the will see the html and not the directory and all that is in it.

i wouldn't think you would need to be to concerned but would definitely put it on a list of to-do's also do a search for .htaccess and hotlinking that way even if you have an index.html people can still use the picture on their website by using store.myshop.com/images/theimage.jpg and the htaccess can prevent this i think it is set up to restrict only access from your webserver.

I hope this helped

 

 

perfect, I put my custom 404 error page in there and named it index.htm

 

Thanks!

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
×
×
  • Create New...