Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.
By aghajani on
I have a website with drupal 4.6. It is on a linux webserver. Someone claims he downloaded my modules and sent me one of my customized modules source. I want to know with permissions in .htaccess, files with .module extention can be downloaded?
I test it myself but just got 404 error from drupal.
thanks
Comments
If he sent you your own code
If he sent you your own code it's a bit more than a claim then? He did achieve it?
--
www.bargainspy.co.uk | More Drupal modules
--
Ixis (UK): Drupal support, Drupal hosting.
Can users create nodes with PHP content?
If so, he may have been able to make a script that would read and show the contents of files that are not web accessible. I have done this on my site, and that is a good reason not to allow PHP content for non-trusted people.