Block file display by extension type in Apache

ubuntu apache-2.4

Sometimes we need to edit a PHP application file on Ubuntu and it ends up generating a .save file, example: secret-config.php.save

If someone accesses this file, they can see the original PHP content. Is there a way in Apache 2.4 to block access to files with extension .save and .swp?


Solution 1:

You could use the FilesMatch directive to deny access to these files like this:

<FilesMatch "\.(save|swp)$">
    Require all denied
</FilesMatch>

Either add this to a .htaccess file or to the corresponding <Directory> block of your vhost configuration.

Also consider to block other file types that could leak sensitive information, like e.g. .sql for mysql dumps that were inadvertantly saved within your DocumentRoot directory:

<FilesMatch "\.(save|swp|sql|sql\.gz)$">

Related

Apache Limiting proxypass based on http method
Can more than 10 instances be created in openstack
Mobile Phone Dialling - Amazon Connect
How to move a subvolume to a new drive in btrfs?
IIS8 IP restrictions
How do I get Citrix apps to open with Citrix client instead of VMware Fusion on Mac OS X 10.6?
Dovecot: is there a way to delete specific email from ALL mailboxes of one domain?
Setting up tomcat autostart on Linux?
Can not connect with Windows 10 Remote Desktop Connection Tool to my Ubuntu 20.04 VPS
Postfix/Dovecot configuration with virtual users
Digital Signatures Using Entreprise PKI
Kubernetes: route outgoing UDP traffic through service