Skip to content

Instantly share code, notes, and snippets.

@fhdalikhan
Created March 7, 2019 05:42
Show Gist options
  • Save fhdalikhan/7b90f40eee0200251958910f2793a4fb to your computer and use it in GitHub Desktop.
Save fhdalikhan/7b90f40eee0200251958910f2793a4fb to your computer and use it in GitHub Desktop.
Disable Script Processing For Directory, Copied from blueimp/jQuery-File-Upload library, this will be usefull for a dir which saves uploaded files.
# To enable the Headers module, execute the following command and reload Apache:
# sudo a2enmod headers
# The following directives prevent the execution of script files
# in the context of the website.
# They also force the content-type application/octet-stream and
# force browsers to display a download dialog for non-image files.
SetHandler default-handler
ForceType application/octet-stream
Header set Content-Disposition attachment
# The following unsets the forced type and Content-Disposition headers
# for known image files:
<FilesMatch "(?i)\.(gif|jpe?g|png)$">
ForceType none
Header unset Content-Disposition
</FilesMatch>
# The following directive prevents browsers from MIME-sniffing the content-type.
# This is an important complement to the ForceType directive above:
Header set X-Content-Type-Options nosniff
# Uncomment the following lines to prevent unauthorized download of files:
#AuthName "Authorization required"
#AuthType Basic
#require valid-user
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment