Comments on: Limiting Access to Websites/Directories with .htaccess

By: Roch

Roch — Wed, 14 Jul 2010 00:44:42 +0000

The problem is that the website in question is on a shared server and other users on the same server (same ip) are using mydomain.com to promote their phishing sites. Since they are on the same server as me mydomain.com/~thatuser/phishing.html is accessible. They are simply using other peoples domains to generate links instead of using theirphishingsite.com

By: Christer Edwards

Christer Edwards — Tue, 08 Jun 2010 23:57:04 +0000

My first question would be why someone else would have access to your website content, allowing them to generate links to other sites. Your content generation should be restricted to trusted users. As far as I know, .htaccess isn’t used to block something like this.

By: Roch

Roch — Tue, 08 Jun 2010 23:02:50 +0000

Do you know of anyway with htaccess to disable someone from using your domain to point to their own website on the same server? Ex: they use YOURDOMAIN.com to promote their PHISHING WEBSITE.COM by using this simple URL to send users : YOURDOMAIN.COM/~phishing/file.html

Any help would be greatly appreciated. Thanks

By: Camrine

Camrine — Wed, 28 Apr 2010 17:48:27 +0000

Two words for ya.
“You Rock”

Thanks for the assist

By: Donnie

Donnie — Wed, 15 Jul 2009 19:00:08 +0000

Hi Limer,

Use the following command: sudo a2enmod rewrite
Make sure the file /etc/apache2/sites-available/default contains the "AllowOverride All" (2 times in this file).

By: limer

limer — Tue, 16 Jun 2009 10:10:10 +0000

Ubuntu Server 8.10

Is the authentication mod (mod_auth) enabled as part of apache2's core? I went by these instructions and am never prompted for a username/password.

By: Derek Hosewood

Derek Hosewood — Fri, 29 May 2009 00:10:04 +0000

Awesome! Exactly the information i needed

By: Frank Polenose

Frank Polenose — Thu, 26 Feb 2009 22:44:13 +0000

Very useful – and easy to understand.

Thank you.