|
Securing Remository files |
|
You should secure your file repository against direct access, otherwise you may find that your bandwidth is being used but your site is not getting any credit for the files that are delivered by other web sites. There are three ways to do this:
- If all your files are in the database (the inital default for a new Remository installation) then you are secure already
- Place all your files in directories that are outside the document root (that is, go up a directory level from anything that it is accessible through the web server and then create a new directory). Remember that the path shown for downloads in the general configuration is only a DEFAULT and the actual path is determined for each container. Versions of Remository from 3.45 will attempt to create the downloads directory in this way for a COMPLETELY NEW installation, but directory permissions may make it impossible for Remository to do this.
- If the files are held in a directory that is within the document root, then use .htacess to block direct access. This can be done by creating a .htaccess file that contains the lines:
order deny,allow
deny from all
|
FAQ