XOOPS 
Faq
HOW TO USE A XOOPS WEBSITE ALL ABOUT XOOPS ADMINISTRATING AND BUILDING A XOOPS WEBSITE DEVELOPMENT AND CUSTOMISATION
SmartFAQ is developed by The SmartFactory (https://www.smartfactory.ca), a division of InBox Solutions (https://www.inboxsolutions.net)

Why should there be an index.html in all my directories?
All directories, which should not be accessed directly via an URL, should hold an index.html with HTML code to return the visitor to the previous page.

If this is not done, there is a possibility that the directory content (the files) will be listed and potentially opening up for misuse of e.g. images, files for download or script files that are not intended to be accessed directly.

5 Comment(s) Print Q&A Send Q&A

The comments are owned by the author. We aren't responsible for their content.
user

 Index.html files

 richbrown   Published 12/28/2004 5:36   Just popping in   Joined 10/20/2004   Comments 96    

Hi

I am currently trying to work through the whole protection of the files and site.

Do I need a index.html file in the top level? I assume not because it is directly accessing the site from a url.

Thanks

Rich

 
user

 Re: Index.html files

 carnuke   Published 12/28/2004 9:30   Home away from home   Joined 11/05/2003   Comments 1955    

Richard,

Thats a good question! I once had my site hacked by someone putting an index.html in my root (with the usual profanities) On deletion I decided to put my own index.html with a redirect to index.php, ie the proper home page.

 
user

 Re: Index.html files

 richbrown   Published 12/29/2004 7:39   Just popping in   Joined 10/20/2004   Comments 96    

Hi

Just thought I would post some code for a redirect page. If any can improve on this post it here!

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<title>Redirect Page</title>
</head>
<body>

<meta HTTP-EQUIV="REFRESH" content="0; url=http://www.yourownurl.com/index.php">

</body>
</html>

Thanks

Rich

 
user

 Re: Index.html files

 WarDick   Published 01/20/2005 16:45   Just can't stay away   Joined 09/13/2003   Comments 890    

I believe this answer is valid only if the directory is accessed blindly. If the file name is known or guessed then this has no effect at all. If directory protection is the aim then .htaccess the the correct way to protect the directory.

 
user

 Re: Index.html files

 kevinv   Published 06/22/2005 1:53   Friend of XOOPS   Joined 01/04/2003   Comments 44    

.htaccess settings won't protect from users guessing or accessing known files. The directories/files do need to be accessed by XOOPS so you can't do a total lockdown in .htaccess -- the best you could do is disable directory browsing in .htaccess, which is the same index.html does.

Also, index.html will work with IIS and Apache and other web servers (assuming the default file is set appropriately.) .htaccess is particular to Apache only.

 

Login

Register now!  |  Lost Password?

Search

Advanced Search

Who's Online

250 user(s) are online (1 user(s) are browsing XOOPS FAQ)

Members: 0

Guests: 250

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Apr 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Did you know ?

Which folder to upload after unzipping a theme file?

Random question

Is there a purchase version?

Recent Q&A List