Facebook
Twitter
nethubonline
Regular Pleskian
Version: 11.0.9 CentOS 6 110120608.16
While PHP support run as FastCGI application, the .htaccess works with rewrite, AuthUserFile...etc., however "deny from all" doesn't work quite well.
If .htaccess contains "deny from all" only, all files except *.php will get 403 error , however *.php will still be shown without any blocking. I checked http://kb.parallels.com/en/124 , but seems it is for Plesk 8.x & 9.x version only, even I apply these setting to version 11, the problem still persists.
May I know whether it is normal case for PHP run as FastCGI? is there any solution to prevent it? Because users expect "deny from all" would deny all access, while web data is leaked out to internet, it is too late that users ask for the solution at this time. Yeah, we know the case but end-users will not understand about this.
While PHP support run as FastCGI application, the .htaccess works with rewrite, AuthUserFile...etc., however "deny from all" doesn't work quite well.
If .htaccess contains "deny from all" only, all files except *.php will get 403 error , however *.php will still be shown without any blocking. I checked http://kb.parallels.com/en/124 , but seems it is for Plesk 8.x & 9.x version only, even I apply these setting to version 11, the problem still persists.
May I know whether it is normal case for PHP run as FastCGI? is there any solution to prevent it? Because users expect "deny from all" would deny all access, while web data is leaked out to internet, it is too late that users ask for the solution at this time. Yeah, we know the case but end-users will not understand about this.
