oliverdavies.uk-old-sculpin/source/_posts/prevent-apache-displaying-text-files-within-web-browser.md

---
title: Prevent Apache from displaying text files within a web browser
date: 2012-05-23
excerpt:
  How to prevent Apache from displaying the contents of files like
  CHANGELOG.txt.
tags:
  - apache
  - code
  - drupal
---

When you download [Drupal](http://drupal.org/project/drupal), there are several
text files that are placed in the root of your installation. You don't want or
need these to be visible to anyone attempting to view them in a browser -
especially CHANGELOG.txt as that includes the exact version of Drupal you are
running and could therefore have security implications.

Rather than delete these files or change the file permissions manually for each
file, I can add the following lines into my VirtualHost configuration.

```language-apacheconf
<Files ~ "\.txt$">
    Order deny,allow
    Deny from all
</Files>
```

This prevents any files with a .txt extension from being accessed and rendered
in a web browser.
Added the rest of the posts 2015-03-16 21:18:03 +00:00			`---`
			`title: Prevent Apache from displaying text files within a web browser`
Move dates into the front matter 2020-03-08 14:32:13 +00:00			`date: 2012-05-23`
Run prettier on all .md files ``` prettier '{app,source}//*.md' --write ``` 2020-03-08 17:52:59 +00:00			`excerpt:`
			`How to prevent Apache from displaying the contents of files like`
			`CHANGELOG.txt.`
Added the rest of the posts 2015-03-16 21:18:03 +00:00			`tags:`
Spaces 2015-06-14 02:27:41 +00:00			`- apache`
			`- code`
			`- drupal`
Added the rest of the posts 2015-03-16 21:18:03 +00:00			`---`
More excerpts 2015-06-18 07:58:56 +00:00
Run prettier on all .md files ``` prettier '{app,source}//*.md' --write ``` 2020-03-08 17:52:59 +00:00			`When you download [Drupal](http://drupal.org/project/drupal), there are several`
			`text files that are placed in the root of your installation. You don't want or`
			`need these to be visible to anyone attempting to view them in a browser -`
			`especially CHANGELOG.txt as that includes the exact version of Drupal you are`
			`running and could therefore have security implications.`

			`Rather than delete these files or change the file permissions manually for each`
			`file, I can add the following lines into my VirtualHost configuration.`
More excerpts 2015-06-18 07:58:56 +00:00
Use prism for code syntax highlighting 2017-03-16 08:09:52 +00:00			```language-apacheconf
			`<Files ~ "\.txt$">`
			`Order deny,allow`
			`Deny from all`
			`</Files>`
			```
Added the rest of the posts 2015-03-16 21:18:03 +00:00
Run prettier on all .md files ``` prettier '{app,source}//*.md' --write ``` 2020-03-08 17:52:59 +00:00			`This prevents any files with a .txt extension from being accessed and rendered`
			`in a web browser.`