Forum Search Register Log in SUPERJER FORA

PHP include thing and Hackingness and Not-accessingness

Pages: [1]

Programming Help

molkman
Owner of George Washington's Prototype Mittens

2005 May 2 • 1996
404 ₧

Hokays, I got this tasty simple PHP script:

<?php
include "bambizzle.htm"
?>

Is it possible to hack it? Because our site is always hacked, that's why we don't have much PHP in it. :/

Also, how can I "lock" folders and such for other people? Like, how can I deny access to like, parts of my site like http://www.exotworking.com/files/ ? Like superjer has it on his site, that a deny-ing page pops up or something. So people can't download the .html and .php files to check stuff.

(Edited 2008 Dec 30 at 05:24) 2008 Dec 30 at 05:24

Yankes
Spawnbox
2008 Dec 28 • 10

just use .htaccess!
google it

2008 Dec 30 at 16:48

superjer
superjer

2005 Mar 20 • 3742

molkman said:

Also, how can I "lock" folders and such for other people? Like, how can I deny access to like, parts of my site like http://www.exotworking.com/files/ ? Like superjer has it on his site, that a deny-ing page pops up or something. So people can't download the .html and .php files to check stuff.

1.) In Apache get rid of Options Indexes.
2.) OR just put a blank index.htm or .php in there.

2008 Dec 31 at 21:25

superjer
superjer

2005 Mar 20 • 3742

molkman said:

<?php
include "bambizzle.htm"
?>

Is it possible to hack it? Because our site is always hacked, that's why we don't have much PHP in it. :/

There's nothing hackable about that code. It isn't even processing any user input so there's no room for exploits.

Alternatively, if it was: include $_GET['something']; it would be very hackable.

(Edited 2008 Dec 31 at 21:29) 2008 Dec 31 at 21:27

molkman
Owner of George Washington's Prototype Mittens

2005 May 2 • 1996
404 ₧

Hokays, thanks, that's all that I needed.

2009 Jan 1 at 13:34

ReviveJer
2009 Nov 27 • 11

Truck revived.

Reviving old trucks is my profession.

2009 Nov 28 at 00:00

Pages: [1]