Hello,
can You please add an .htaccess file in the "files" folder as default in the script package ?
I know we can add it later, but it would be nice to have it as a part of the security.
This will disable direct download by using the url: http://ourdomain.com/files/somefile.zip etc....
I am aware that uploaded files have an "hashed" name which is difficult to guess,
but anyway it`s better to disable the direct file download.
the content of that .htaccess code is:
Order deny,allow
Deny from all
I know that we can also change the file location and use a location outside of the site root, but why bother
when we can just use the files folder and be secure at the same time ..
Thank You
can You please add an .htaccess file in the "files" folder as default in the script package ?
I know we can add it later, but it would be nice to have it as a part of the security.
This will disable direct download by using the url: http://ourdomain.com/files/somefile.zip etc....
I am aware that uploaded files have an "hashed" name which is difficult to guess,
but anyway it`s better to disable the direct file download.
the content of that .htaccess code is:
Order deny,allow
Deny from all
I know that we can also change the file location and use a location outside of the site root, but why bother
when we can just use the files folder and be secure at the same time ..
Thank You