I am following "How to secure your osCommerce 2.2 site" thread.I am at the htaccess protection part.I have 4 questions
1There are lots of htaccess files.which one should i edit?
-----------------------------------
The codes i am to enter is like below.But these dont like other lines in htaccess.
# Redirect index.php to domain.com
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /index\.php\ HTTP/
RewriteRule ^index\.php$ http://www.YOURSITE.COM/ [R=301,L]
------------------------
2Should i include green part
----------------
3Should i put " # " to begining of every line like
# Redirect index.php to domain.com
#RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /index\.php\ HTTP/
#RewriteRule ^index\.php$ http://www.YOURSITE.COM/ [R=301,L]
------------------------------
4Are there spaces between lines like
# Redirect index.php to domain.com
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /index\.php\ HTTP/
RewriteRule ^index\.php$ http://www.YOURSITE.COM/ [R=301,L]
Latest News: (loading..)
0
5 replies to this topic
#2
-
- Community Sponsor
-
- 10,466 posts
- Real Name:Chris Dunn
- Gender:Male
- Location:Tecumseh, Ontario, Canada N8N 1X8
Posted 31 January 2012, 20:48
@adobe19,
There is only ONE active .htaccess file in your root directory.
Only put # in front of the line if you want to comment it out. Similar to the /* and // and <!-- symbols used to comment out code.
You can leave the green lines so you know what the code below it does.
You can have lines between the lines, but you don't have to have them.
Chris
There is only ONE active .htaccess file in your root directory.
Only put # in front of the line if you want to comment it out. Similar to the /* and // and <!-- symbols used to comment out code.
You can leave the green lines so you know what the code below it does.
You can have lines between the lines, but you don't have to have them.
Chris
:|: Was this post helpful ? Click the LIKE THIS button :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
#3
Posted 31 January 2012, 22:10
After following below 2 steps i cannot login to admin pannel.It says Error: Invalid administrator login attempt..Also i would ask where to put index_error.php created in Anti XSS step and what to write inside.Thanks
You can add htaccess protection http://addons.oscommerce.com/info/6066
You can stop Cross Site Scripting attacks with Anti XSS http://addons.oscommerce.com/info/6044
You can add htaccess protection http://addons.oscommerce.com/info/6066
You can stop Cross Site Scripting attacks with Anti XSS http://addons.oscommerce.com/info/6044
#4
-
- Community Sponsor
-
- 10,466 posts
- Real Name:Chris Dunn
- Gender:Male
- Location:Tecumseh, Ontario, Canada N8N 1X8
Posted 31 January 2012, 22:16
@adobe19,
NONE of the .htaccess changes are intended for the /admin/.htaccess file. They are intended for the root .htaccess file.
Chris
NONE of the .htaccess changes are intended for the /admin/.htaccess file. They are intended for the root .htaccess file.
Chris
:|: Was this post helpful ? Click the LIKE THIS button :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
#6
-
- Community Sponsor
-
- 10,466 posts
- Real Name:Chris Dunn
- Gender:Male
- Location:Tecumseh, Ontario, Canada N8N 1X8
Posted 31 January 2012, 22:24
@adobe19,
Changes to the/.htaccess file would not generally effect the admin area of your website unless you have changed the path.
Chris
Changes to the/.htaccess file would not generally effect the admin area of your website unless you have changed the path.
Chris
:|: Was this post helpful ? Click the LIKE THIS button :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
