security - Preventing user accesing Node.js application code -
assuming user has access files within public_html directory. doesn't mean have access node.js application code within it? certainly massive security risk.
what normal way of handling this? user files permissions restrict file, or place node directory outside of public_html , reference somehow? if so, how?
many answers given!!
yes server scripts should live outside public_html. files want create available public should placed under public_html.
your node server script can refer "./public_html" or "../public_html" folder if stored in or above folder containing script, or can refer "/path/to/public_html" if stored elsewhere on filesystem.
security node.js
No comments:
Post a Comment