Some of our 3rdparty applications contain folders that shouldn't be accessible via web, eg squirrelmail "data" folder (/ usr/local/cpanel/base/3rdparty/squirrelmail/data).
This folder contains a .htaccess file with the following content "Deny from All" but this doesn't make any effect, if I create a file /usr/local/cpanel/base/3rdparty/squirrelmail/data/hello.html when a webmail user is logged in, he can see the content of the fille browsing: https://servername.com:2096/3rdparty/squirrelmail/data/hello.html, even with the .htaccess denagation.
I put garbage to damaging the syntax of .htaccess trying to cause a 500 error, it does not, so the webserver running the panel doesn't read the file .htaccess.
Same thing is happening with all the .htacess files inside /usr/local/cpanel/base/3rdparty, like:
./phpMyAdmin/libraries/.htaccess
./roundcube/program/.htaccess
./roundcube/plugins/enigma/home/.htaccess
./roundcube/logs/.htaccess
./roundcube/config/.htaccess
./roundcube/.htaccess
./roundcube/temp/.htaccess
./squirrelmail/po/.htaccess
./squirrelmail/include/.htaccess
./squirrelmail/data/.htaccess
./squirrelmail/functions/.htaccess
./squirrelmail/class/.htaccess
./squirrelmail/help/.htaccess
./squirrelmail/plugins/squirrelspell/modules/.htaccess
./squirrelmail/config/.htaccess
./squirrelmail/doc/.htaccess
./squirrelmail/contrib/.htaccess
./squirrelmail/locale/.htaccess
How can you do to make the .htaccess file works under cPanel /webmail/ ?
Thanks a lot,
This folder contains a .htaccess file with the following content "Deny from All" but this doesn't make any effect, if I create a file /usr/local/cpanel/base/3rdparty/squirrelmail/data/hello.html when a webmail user is logged in, he can see the content of the fille browsing: https://servername.com:2096/3rdparty/squirrelmail/data/hello.html, even with the .htaccess denagation.
I put garbage to damaging the syntax of .htaccess trying to cause a 500 error, it does not, so the webserver running the panel doesn't read the file .htaccess.
Same thing is happening with all the .htacess files inside /usr/local/cpanel/base/3rdparty, like:
./phpMyAdmin/libraries/.htaccess
./roundcube/program/.htaccess
./roundcube/plugins/enigma/home/.htaccess
./roundcube/logs/.htaccess
./roundcube/config/.htaccess
./roundcube/.htaccess
./roundcube/temp/.htaccess
./squirrelmail/po/.htaccess
./squirrelmail/include/.htaccess
./squirrelmail/data/.htaccess
./squirrelmail/functions/.htaccess
./squirrelmail/class/.htaccess
./squirrelmail/help/.htaccess
./squirrelmail/plugins/squirrelspell/modules/.htaccess
./squirrelmail/config/.htaccess
./squirrelmail/doc/.htaccess
./squirrelmail/contrib/.htaccess
./squirrelmail/locale/.htaccess
How can you do to make the .htaccess file works under cPanel /webmail/ ?
Thanks a lot,
