Self protection

This area include options to protect our own .htaccess files and our server.

  • Prevent access to .ht files

Any attempts to access ^.ht files (e.g. .htaccess and .htaccess.backup) will result in a 403 error message

  • Prevent Unauthorized Directory Browsing

Prevent unauthorized directory browsing by instructing the server to serve a 'xxx Forbidden –Authorization Required' message for any request to view a directory. For example, if your site is missing it's default index page, everything within the root of your site will be accessible to all visitors.

  • Protect against file injection attacks

Protect against Local and Remote File Inclusion attacks.

  • Protect against /proc/self/environ attacks

Give us an additional layer of security against attacks using the /proc/self/environ methods.