[wp-hackers] xmlrpc.php's location
Alex King
alex at alexking.org
Fri Sep 17 20:18:15 UTC 2004
Right, but having the .php extension keeps them from being sent as
plain text, even if there is no .htaccess magic. The default setting
for .inc files is to send them as plain text, unprocessed.
--Alex
http://www.alexking.org/
On Sep 17, 2004, at 2:14 PM, Deirdre Saoirse Moen wrote:
> On Fri, 17 Sep 2004, Alex King wrote:
>
>> I think .inc.php is a little safer (and seems to be convention in
>> other
>> packages) so they aren't sent as raw text in case something unexpected
>> happens with your server.
>
> Either way, as long as .htaccess can nab 'em before they get spewed.
More information about the hackers
mailing list