[wp-trac] [WordPress Trac] #50590: .htaccess deny from all auto-blocker if plugin got deactivated + WordPress internal firewall
WordPress Trac
noreply at wordpress.org
Tue Jul 7 12:37:31 UTC 2020
#50590: .htaccess deny from all auto-blocker if plugin got deactivated + WordPress
internal firewall
-----------------------------+-------------------------------
Reporter: KestutisIT | Owner: (none)
Type: feature request | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 5.4.2
Severity: normal | Resolution:
Keywords: | Focuses: coding-standards
-----------------------------+-------------------------------
Comment (by KestutisIT):
Yes, I have. With PHP script you can check if you have access to that 'X'
folder or not.
If you still have it, and you see it's NGIX, you put a red warning text
saying.
Please immediately contact your server administrator to add this NGIX
directive:
{{{
/../x-user/.../.../x-plugin/ deny all
}}}
The red warning message will help a lot. Also user will always have an
option to remove that plugin from server, and red warning will disappear.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/50590#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list