Best way to prevent directory viewing on a hosted domain?

Feek · 1 Sep 2011 at 13:13

What's the best way to do this, to stop people pulling up a directory listing on a domain?

I can create a .htaccess file and the two options I've found are either

Options –Indexes

or

IndexIgnore *

Both work, the first one returns a server error when I go to a directory

"Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator, [email protected] and inform them of the time the error occurred, and anything you might have done that may have caused the error.

More information about this error may be available in the server error log.

Additionally, a 500 Internal Server Error error was encountered while trying to use an ErrorDocument to handle the request."

The second just returns an empty index.

Is either one better than the other, or is there a different way for me to do this?

Confused · 1 Sep 2011 at 13:40

A blank index.html in each folder.

Feek · 1 Sep 2011 at 13:46

Yeah, that works but just needs faffing about in each directory. It'll do though, ta.

Confused · 1 Sep 2011 at 14:30

It's what Wordpress/phpBB do...

Well, technically Wordpress use an index.php with the following contents:

PHP:

<?php
// Silence is golden.
?>

Deleted member 77746 · 2 Sep 2011 at 17:11

Feek said:
Yeah, that works but just needs faffing about in each directory. It'll do though, ta.

It certainly does but worth it.

asim18 · 2 Sep 2011 at 20:07

Don't you have cPanel?

Just go to Index Manager, click on a folder, and hit "No Indexing". Any sub-directories automatically become the same as the parent folder.

If you want a custom error page go to Error Pages, and edit the code for "403".

shine · 3 Sep 2011 at 11:20

In .htaccess add these lines

Code:

DirectoryIndex index.html index.php /index.php
Options +FollowSymlinks +IncludesNOEXEC

This will look for a html or php file named index in the current directory or failing that load the index.php in the root directory. Replace php/html with whatever file extension you like.

ristac · 3 Sep 2011 at 12:26

A php redirect just pop this in and call it index.php

<?php
header( "HTTP/1.1 301 Moved Permanently");
header( 'Location: http://www.yourdestination.com/' );
?>

If you have an affiliate you could enter their code and send the snooper direct to them

Deleted member 77746 · 3 Sep 2011 at 13:34

asim18 said:
Don't you have cPanel?

Just go to Index Manager, click on a folder, and hit "No Indexing". Any sub-directories automatically become the same as the parent folder.

If you want a custom error page go to Error Pages, and edit the code for "403".

Thanks for this

rarryawn · 4 Sep 2011 at 19:15

asim18 said:
Don't you have cPanel?

Just go to Index Manager, click on a folder, and hit "No Indexing". Any sub-directories automatically become the same as the parent folder.

If you want a custom error page go to Error Pages, and edit the code for "403".

Second, thanks for this, I didnt know getting those disallowed index pages to redirect to somewhere useful would be so easy

eXor · 5 Sep 2011 at 08:04

ristac said:
If you have an affiliate you could enter their code and send the snooper direct to them

Naughty!

Deleted member 77746 · 5 Sep 2011 at 19:41

ristac said:
If you have an affiliate you could enter their code and send the snooper direct to them

More info, email in trust. :confused: