apache tutorial - Using .htaccess files - apache - apache web server - apache server - apache2



What is .HTACCESS FILES

  • An .htaccess file is a plain-text configuration file that enables you to customize the web server's configuration.
  • When the Apache web server processes an incoming client request for a file, it looks for an .htaccess file in the same directory.
  • If the .htaccess file exists, Apache reads the directives in the file and overrides the server's global configuration.
  • Any directives defined in an .htaccess file apply to the directory where the file is located, and to all subdirectories beneath it.
  • You can use directives in .htaccess files to redirect requests to different URLs, control directory listings, specify custom error documents, and more.
  • A2 Hosting web server configurations use the AllowOverride All directive to provide the most flexibility for your web site.
  • If there are any misconfigured rules or incorrect syntax in an .htaccess file, users see an “Internal Server Error” message when they visit a page in the same directory. Be very careful when you make any changes to an .htaccess file.

PROTECTING .HTACCESS FILE

  • By default, anyone can view the contents of an .htaccess file. However, this is a potential security risk, because it exposes web site configuration information.
  • For security reasons, it is a good idea to prevent visitors from viewing .htaccess files.
  • To do this, add the following directives to the .htaccess file:
# Prevent Apache from serving .htaccess files:
<FilesMatch "^\.htaccess">
    Order allow,deny
    Deny from all
</FilesMatch>
click below button to copy the code. By Apache tutorial team
  • Now, visitors who try to view the .htaccess file directly receive a “403 Forbidden” error in their web browser.

Related Searches to Using .htaccess files