[wp-trac] [WordPress Trac] #19235: Turn ms-files.php off by default

WordPress Trac wp-trac at lists.automattic.com
Sun Nov 13 00:54:10 UTC 2011


#19235: Turn ms-files.php off by default
--------------------------+------------------------------
 Reporter:  nacin         |       Owner:
     Type:  defect (bug)  |      Status:  new
 Priority:  normal        |   Milestone:  Awaiting Review
Component:  Multisite     |     Version:
 Severity:  normal        |  Resolution:
 Keywords:  3.4-early     |
--------------------------+------------------------------

Comment (by Ipstenu):

 From a setup/host perspective, yes, please.  It would save us havign to
 say "No, no, blogs.dir is the name of the folder."

 The blog ID was never a huge secret anyway, no more than wp-
 content/uploads was (of course, it will screw up the people who, against
 all recomendations, went and changed the uploads location manually - I
 keep telling people not to mess with it if they don't understand how ms-
 files works, but you can't fix stupid).

 I don't think it would cause any more plugin problems than it does now,
 though this is something where perhaps we should look and see how many (if
 any) plugins are using ms-files.php...

 I did a quick check and came up with these:

 Two exploit scanners (which makes sense given how they work):
 * exploit-scanner
 * jw-cloud-sites-wp-scanner
 * ultimate-security-checker
 * ultimate-security-checker

 Directions on how to edit your permalinks/htaccess:
 * nginx-compatibility
 * wcs-custom-permalinks-hotfix
 * wordpress-multi-site-enabler-plugin-v10

 Role Scoper calls in rewrite-mu_rs.php (interesting):
 * role-scoper

 The only one that surprises me is Role Scoper, though.  The rest are
 nothing to worry about.

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/19235#comment:18>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list