Hardening Wordpress

/ Published in: Apache
Save to your folder(s)

In addition to the recommendations on the Wordpress Website.

Limit the amount of PHP files that a writable by Apache. The directory's and files that need to be writable, do not always need to be executed by PHP directly.

This makes it a bit harder for the attacker to upload and execute any PHP commands.

Copy this code and paste it in your HTML
  1. <Directory "/example/htdocs/wp-content/uploads/">
  2. php_admin_flag engine off
  3. </Directory>
  4. <Directory "/example/htdocs/wp-content/themes/">
  5. <Files *php>
  6. Order allow,deny
  7. Deny from all
  8. </Files>
  9. </Directory>

URL: http://codex.wordpress.org/Hardening_WordPress

Report this snippet


RSS Icon Subscribe to comments

You need to login to post a comment.