Question about Cron jobs


#1

Hi,
I have just installed an application on my dreamhost web server, on the security side of things the application warns of the following:-

Configuration Warnings

* cron script accessible from outside

The modules/base/cron.php file should only be allowed to run from server (localhost). Because this file will be run via command line PHP by cron (or your scheduler program) you should modify your web server’s configuration (apache site file) to restrict access to this file.

My question is, how do i implement this security update to prevent the script being run from outside my loaclhost?


#2

Try this (I’ve not tried this). Create a .htaccess file in /modules/base/ with the following:

order deny,allow
deny from all

To test, use your browser and go to http://example.com/modules/base/cron.php and see if you get an Access Denied type message.


#3

Thank you! Worked a treat…