The only way I can see to make this possible is to use the password protection mechanisms of Parallel ATA (aka IDE). The PATA spec allows setting a hard drive password:
hard drive passwords and security
The disk lock is a built-in security
feature in the disk. It is part of the
ATA specification, and thus not
specific to any brand or device.
( http://en.Wikipedia.org/wiki/AT_Attachment#HDD_passwords_and_security )
If the disk is password-protected, you need the password to unlock it before it can be accessed.
However I would rather advise against this: This feature of ATA is seldom used, and you need special software on the host computer to use it (which in turn normally needs admin privileges to install on the host computer). Also I'm not sure it will work with removable drives, and I believe Serial ATA does not have it. Finally, it can be defeated using special software (or hardware tinkering) on most drives (though this can be tricky).
Other than that, I don't believe there is a solution to your problem. If you want to prevent others from reading or manipulating the data, encryption (specifically full disk encryption / FDE) is the way to go, e.g. TrueCrypt. This is reasonably cross-platform, usable and secure. It will however not prevent someone from formatting the drive.
As to protection from formatting:
If you want to prevent people from destroying the data on the drive, you need to keep it physically secured anyway. If someone just wants to destroy the data, they can just damage the drive...
I wouldn't think so because the files exist locally on the hdd. If the dropbox process was terminated they'd still be on the local disk and accessible so you couldn't rely on dropbox to enforce passwords.
The approach I would take is
a) full disk / system encryption with truecrypt (if device gets stolen)
b) password locking of systems when unattended for x minutes / hibernate after y
c) if worried about the security of files within dropbox - something like http://stefanstools.sourceforge.net/CryptSync.html - encrypt individual files / filenames within dropbox mirrored to local unencrypted folder (that would be protected with true crypt full disk)
Best Answer
Try this in your
.htaccess
:Here
Require valid-user
requires any known login. Then you amend this restriction for files with at least one character in their name – this is what the glob pattern?*
for the<Files>
section will match –, which effectively means the enclosed rules apply to files, but not to directories.In the amended rules for files, the key is
Satisfy any
. It allows the authorization to satisfied by either credentials or IP address. Then you allow any IP address to pass, so requests are always authorised.So now browsing this directory or any of its subdirectories will require a login, but directly retrieving a file from it won’t.
Which is what you wanted.