« Where Does Google Get Weather Forecasts? Genealogy as a Security Risk »
Private Data in Public Webspace
Posted March 5, 2005 – 10:43 pm by Yakov Shafranovich in ProgrammingI have been recently playing around with some geneology utilities for my website and came across an interesting problem. One of these programs, PHP GedView, requires a directory with full write access in order to work. Their documentation recommends that “for optimal security, you should move the “index” directory to a location outside of your webspace”. On some webhosts such as 1and1 there is nothing outsite the public webspace that is accessiable. So what’s the solution? Obscurity – renamed the index directory to something else of your choice which will act as a password.
Tags: genealogy, phpgedview, privacy, security —
Permalink | Trackback URL | This post has
One Response to “Private Data in Public Webspace”
1&1 may be slightly odd (to say the least) but because they give you an more or less empty directory hierarchy you can just create a folder below your root (ie /sitefiles), stick your public stuff in there, and then change the destination of the domain to pull files only from /sitefiles. Now, anything above that (ie /foo /bar) is impossible to publicly get.
(sorry i know its an old post but I had nothing better to do
By CF on Mar 9, 2008