2011-05-20T13:46:44Z PunBB https://frontaccounting.com/punbb/viewtopic.php?id=2088 Yea ok cool, I'll go with an .htaccess.

]]> https://frontaccounting.com/punbb/profile.php?id=6098 2011-05-20T13:46:44Z https://frontaccounting.com/punbb/viewtopic.php?pid=9202#p9202 This cannot be done (in current FA framework). Files with .php extension are executed, which would open real security hole in application.
If you will turn htaccess support on with AllowOverride option in your apache server configuration files, all the *.inc files will not be available via http.
BTW FA is open sourced, so the files are publicly viewable anyway .

]]> https://frontaccounting.com/punbb/profile.php?id=89 2011-05-13T14:58:39Z https://frontaccounting.com/punbb/viewtopic.php?pid=9101#p9101 It would be nice if future versions of FrontAccounting would add .inc.php suffixes to included files instead of just .inc.  If a file just has .inc at the end most web servers will not parse the file and thus your source code (in addition to many database queries) are publicly viewable if a URL is guessed.

]]> https://frontaccounting.com/punbb/profile.php?id=6098 2011-05-12T15:45:26Z https://frontaccounting.com/punbb/viewtopic.php?pid=9092#p9092