Apache server software provides distributed (i.e., directory-level) configuration via Hypertext Access files. These .htaccess files enable the localized fine-tuning of Apache’s universal system-configuration directives, which are defined in Apache’s main configuration file. The localized .htaccess directives must operate from within a file named .htaccess. The user must have appropriate file permissions to access and/or edit the .htaccess file. Further, htaccess file permissions should never allow world write access — a secure permissions setting is “644”, which allows universal read access and user-only write access. Finally, .htaccess rules apply to the parent directory and all subdirectories. Thus to apply configuration rules to an entire website, place the .htaccess file in the root directory of the site.

Below is an excellent write-up/guide to creating or editing your .htaccess file. Also included are some tricks to help keep your webserver secure from potential threats.

Stupid htaccess Tricks

Related Posts: On this day...

• Tracing the pill-trails to America from Russia's e-pharmacy underworld - 2011
• Google tweaks SEO algorithm - 2011
• Giant Google infographic - 2010
• Hidden government cameras in digital converter boxes? No. - 2009
• Eminem sues Universal over digital royalties - 2009
• Röyksopp's new "Happy Up Here" video - 2009
• Amusing Unix csh/sh Commands - 2009
• Michael Phelps: Time Traveler - 2009
• Ron Paul on Glenn Beck 2/24/2009 - 2009
• Steve Ballmer: Linux is Bigger Competitor than Apple - 2009