Hi all, I have a site where I have added the following to the htaccess file to reduce the possibility of being hacked (asd tehg site was compromised once before)

Code:
# secure directory by disabling script execution
AddHandler cgi-script .php .pl .py .jsp .asp .htm .shtml .sh .cgi
Options -ExecCGI
If I add this to the site it does what it is meant to, stops all execution, however the site has one folder which is the built in editor that I need to allow it to run scripts etc to enable files to be edited, but if I add the reverse (+ExecCGI) it does not over ride the root directoy with the -ExecCGI, is there something I am doing wrong? Or is there an alternative and better solution?

The files being edited however are also in the root and other subfolders, by having the -ExecCGI in the root will that stop those files being edited by the script editor?

Thanks

GW