Font Size
Free Script installer FORUMS Ad management Portals and Cms Blogs Welcome Hepsia cPanel hosting
Free Script installer
You're about to get acquainted with a brand new mechanism of installing and managing PHP scripts. Our Elefante Installer allows you to install and manage blogs, forums, image galleries, content management systems, e-shops and many more, without any knowledge of basic programming languages such as HTML, PHP, etc. The Elefante Installer is a FREE PHP web application services installer which makes it easy for you to automatically install over 40 popular PHP script packages straight from your personal Web Hosting Control Panel or have the script insalled when you sign up ready for use.
Read the Full Story
FORUMS
An Internet forum is a discussion area on a website. Website members can post discussions and read and respond to posts by other forum members. An Internet forum can be focused on nearly any subject and a sense of an online community, or virtual community, tends to develop among forum members.
Read the Full Story
Ad management

Ad Management Scripts/Software

Pop-ups and other kinds of advertisements are a constant irritation for many Internet users. But, like all things media (such as television and radio), the web can't continue to exist without them. Whether webmasters like it or not, advertising helps pay their bills to keep their sites running. Therefore, it's always a good idea to know how to make them work for you. One way you can do this is to use ad management scripts or software. The sheer number available, online or otherwise, guarantees that you'll be able to find one that will fit your needs and budget.
Read the Full Story
Portals and Cms
A portal Web site is a Web site that aims to be your "portal," or entranceway,  to most anything you can do on the Web. For example, Yahoo is considered a  portal because it offers a search engine that helps you find other Web sites, as  well as topics categories such as finance,  travel, health, etc. that help you find information on the Web about those  topics. In the 1998-2001 phase of the Internet, many Web sites aspired to be  portals, because they believed it would mean users would use them as their  "start page" and visit frequently, even if they eventually left to visit other  Web sites. However, these days, most Web sites do not want to be mere start  pages; they want to keep you on their Web site for as long as possible, and not  take you to other Web sites.
Read the Full Story
Blogs

What's a blog?

A blog is a personal diary. A daily pulpit. A collaborative space. A political soapbox. A breaking-news outlet. A collection of links. Your own private thoughts. Memos to the world. Your blog is whatever you want it to be. There are millions of them, in all shapes and sizes, and there are no real rules. In simple terms, a blog is a website, where you write stuff on an ongoing basis. New stuff shows up at the top, so your visitors can read what's new. Then they comment on it or link to it or email you. Or not
Read the Full Story
Welcome
  • Upto unlimited GB Disc Space
  • Upto Unlimited Data Transfer
  • FTP, Stats
  • Upto unlimited Email Accounts
  • Free sub Domain Name
  • Free Site Builder
  • Unlimited Domain Hosting
 
Read the Full Story
Hepsia cPanel hosting

Hepsia Control Panel Top Features

You can now register, transfer or manage multiple domain names & websites from just one place. This is something cPanel has big problems with. Actually there is no Domain Manager at all in cPanel. With Hepsia you can set up and manage multiple fully independent websites from a single account. No need to have separate control panels (i.e. logins) for your domains, support tickets and billing.
Read the Full Story

How to Prevent a Directory Listing of Your Website with .htaccess

If you create a new directory (or folder) on your website, and do not put a “index.html” file in it, you may be surprised to find that your visitors can get a directory listing of all the files in that folder. For example, if you create a folder called “incoming”, you can see everything in that directory simply by typing “http://www.example.com/incoming/” in your browser. No password or anything is needed.

This article shows you how you can configure your web server so that it does not show a directory listing by default.

1) Prerequisites

  • Your Website Must Be on an Apache Web Server

 

For the method described in this article to work, your site should be hosted on an Apache web server. This probably constitutes the majority of websites on the Internet, so it is likely that you satisfy this requirement. In general, if your web server (the computer that your site is running on) is using Linux or FreeBSD, chances are that it’s on an Apache server. If your server is using Windows, your website is probably not using Apache. Note that I’m talking about the computer hosting your website, not your own personal computer. If you’re not sure, ask your web host.

2) Your Web Host Must Have Enabled .htaccess Server Overrides

In addition to being hosted on an Apache web server, your web host needs to have enabled server overrides. This facility allows you to modify the web server configuration from your own website.

Both the above conditions must be true, or you won’t be able to successfully do the things mentioned in this guide.

Is Protecting Your Directory Listing From View a Security Measure?

Protecting your directories from being listed by your website’s visitors does not, in and of itself, make your website more secure. At best, it’s security by obscurity — that is, you hope that by hiding stuff from view, nefarious visitors up to no good will not be able to get access to those things. It’s the web equivalent of hiding your life savings under your mattress.

However, while you should of course implement other measures for securing your site, it’s still good practice not to allow your directories to be listed by default. That way, at least, you don’t make it too easy for others to survey your site for vulnerabilities. This is especially so if you have third-party scripts on your site (such as, for example, you run a blog).

It’s important to realise this, so that you don’t rely on this method alone for security.

Steps to Preventing a Directory Listing

3)  Get Your Existing .htaccess File, If Any

Connect to your website using an FTP or SFTP software. Go to the top web directory of your site, where you place your home page, and look for a file called “.htaccess”. If it exists, download it to your computer.

If it does not exist, make sure that it is not hidden from your view. This has to be done from within your FTP program itself. Depending on which program you use, you may need to log off, set a “Remote file mask” of “-a” (without the quotation marks) in the options for the program, and log in again to check.

(The “remote file mask” is the term used in the FTP client that I use. Your program may use a different term.)

Another way to do this is to log into your site from your web host’s control panel. Most webhost provide a way for you to view your web directories from your web browser, as well as upload and download files from them. If your web host has an option to “show hidden files” or some such thing, make sure you enable it. From your host’s web interface, you should be able to locate and download your existing .htaccess file.

Don’t worry if, after all your efforts, you can’t find any .htaccess file in the main web directory. It’s quite normal for a website not to have one. You’ll just have to create a blank one later. However, if one exists, it’s important that you get it, so that we can add to the settings in the file instead of overwriting them.

4. Make a Backup of the .htaccess File

If you managed to find and download the .htaccess file from your site, save a backup copy on your own computer. That is, make sure you have 2 copies of the .htaccess file on your computer, the one you are about to modify, and a pristine copy of the original. The backup is useful in case you accidentally make an error later.

5. Create or Open the .htaccess File

If you’ve managed to get the .htaccess file, open it in an ASCII text editor like Notepad or the free notepad++ which is so much better. If one does not exist, use the editor to create a new blank document. The rest of this article will assume that you have already started the editor with the .htaccess open or with a blank document if no .htaccess file previously existed.

WARNING:

Do not use a word processor like Word, Office, or WordPad to create or edit your .htaccess file. You should also not use aWYSIWYG (What-You-See-Is-What-You-Get) web editor for this purpose. If you do, your site will mysteriously fail to work when you upload the file to your web server. This is very important. There are no exceptions.

6. Disable Indexing

Add the following line to your .htaccess file.

Options -Indexes

Make sure you hit the ENTER key (or RETURN key if you use a Mac) after entering the “Options -Indexes” words so that the file ends with a blank line.

7. Saving and Uploading the File

Once you’re done with disabling the directory listing in the .htaccess file, save the file. If your file is a new one, and you’re using Notepad, make sure you save it as “.htaccess”, quotes and all. If you don’t add the quotes, Notepad will add a .txt extension to your filename without telling you. Also, make sure the filename itself is exactly .htaccess, that is, the name starts with a full stop (“period” if you use US English), and is entirely in small letters (lowercase). No other name is acceptable.

Then upload the file to your web server using an FTP/SFTP program (or with your web host’s control panel)..

8. Test Your Site

Whenever you modify your .htaccess file, you should always check that your website still works after uploading it. I’m not kidding here. The .htaccess controls everything the server does with your site. A slight error can render your entire website unusable. So when I say test your website, you should test not only that a directory without “index.html/php/shtml……” can no longer be listed, but also check your main page and a few other pages to make sure that they still load.

If anything goes wrong, delete the .htaccess or remove the line you added file on your website and your site should work again. For those who had an existing .htaccess on the site before, upload the backup copy to the site.

« Previous
Change file permissions
  
Next »
Search engine (SEO)
DMCA.com

Adds