[wp-hackers] protecting wp-content/plugins ?
Omry Yadan
omry at yadan.net
Sat Aug 18 08:14:51 GMT 2007
g30rg3_x wrote:
> 2007/8/17, Omry Yadan <omry at yadan.net>:
>
>> Matt wrote:.
>> I really don't see the big deal here. why not add an empty index.html
>> file and be done with it?
>> it will certainly reduce the vulnerability of many wp blogs out there.
>>
>
> because you will need to add a blank index.html to every directory
> (and subdirectories), its a not efficient way to solve this...
covering wp-content and wp-themes will make the life of an attacker much
harder.
there is a huge difference because those are guarantied to be there.
More information about the wp-hackers
mailing list