This is my first posting so I hope itís in the right place. Iím finishing my first dynamic site, which Iím administrating, on Fedora Core 4. Iím learning as I go along - so please forgive if questions are a bit unclear.
Iím currently reviewing the security of my site after reading a article (lost the URL!!!!!) that recomended using relative file paths to hinder attacks ... I think it was saying you can stop an attack by the fact that you are concealing the root directory. (e.g. ../index.html) - is this true?
thing is, the root of my site is the ďpublic_HTMLĒ folder on my server .... and so if I know my URL I can access any subdirectories. The only way I can see to truly protect my image folders, include files etc is to place them in a higher directory - i.e. in an adjacent folder to public_HTML, so the root folder cannot be guessed.
- Does this make sense?
- is this possible?
- or can you recommend a more appropriate practice?
many thanks in advance