[wp-hackers] Another anti-spam technique
Donncha O Caoimh
donncha at linux.ie
Thu Oct 28 15:01:26 UTC 2004
It doesn't matter - the default for new installations is that the
install directory will probably be writable by the web server. There are
no checks afterwards AFAIK.
And anyway, you've got a writable index.php file, so there's no more
harm having a .htaccess file writable in that directory...
Donncha.
Jamie Talbot wrote:
> Kimmo Suominen wrote:
> | If the web server is to create files, there needs to be a specific
> | directory that has permissions to do so, and the code has to work
> | (using a fallback to the current behaviour, or something) even if that
> | directory is not writable (or does not exist).
> |
> | I'm more concerned that someone manages to upload a script to the web
> | server and run it, than that I have to moderate spam...
>
> Yup, good point, well made :D Scratch that idea then!
More information about the hackers
mailing list