Sometimes linux hosting users need to change the permissions on a folder to use upload scripts or other applications that need this permissions.

With chmod 777 their folder gain the rights: writing / reading and execute for everyone. Malicious hackers like these kind of folders.

How can you protect that folders?
You can turn PHP off on that folder and disable php / html / perl files.

How can it be done?
Create this .htaccess in the folder:

php_flag engine off
<Files ~ “\.(php*|s?p?html|cgi|pl)$”>
deny from all
</Files>

Thats it, you just increased the security level on this folders.

Filed under: howto, security