[wp-trac] [WordPress Trac] #36177: default htaccess should include security measures
WordPress Trac
noreply at wordpress.org
Fri Mar 11 08:07:00 UTC 2016
#36177: default htaccess should include security measures
-------------------------+------------------------------
Reporter: lelutin | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version:
Severity: normal | Resolution:
Keywords: | Focuses:
-------------------------+------------------------------
Comment (by lelutin):
oh my this is really embarrassing <.<;
Location is not at all permitted in .htaccess.. so the part about
disabling php for wp-content is not functional.
something could be done with mod_rewrite instead to deny access to .php
files under that directory.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/36177#comment:6>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list