Snipplr

(Apache) WordPress - .htaccess - protect config file - josephknight

Mon, 05 Jul 2010 16:26:18 GMT

The problem As a WordPress user, you probably know how important the wp-config.php file is. This file contains all of the information required to access your precious database: username, password, server name and so on. Protecting the wp-config.php file is critical, so how about exploiting the power of Apache to this end? Code explanation .htaccess files are powerful and one of the best tools to prevent unwanted access to your files. In this code, we have simply created a rule that prevents any access to the wp-admin.php file, thus ensuring that no evil bots can access it. Source * 10 Easy Ways to Secure Your WordPress Blog

(Apache) WordPress - .htaccess - block injection attacks - josephknight

Mon, 05 Jul 2010 16:17:18 GMT

The problem Protecting dynamic websites is especially important. Most developers always protect their GET and POST requests, but sometimes this is not enough. We should also protect our blog against script injections and any attempt to modify the PHP GLOBALS and _REQUEST variables. The solution The following code blocks script injections and any attempts to modify the PHP GLOBALS and _REQUEST variables. Paste it in your .htaccess file (located in the root of your WordPress installation). Make sure to always back up the .htaccess file before modifying it. Code explanation Using the power of the .htaccess file, we can check requests. What we’ve done here is check whether the request contains a and whether it has tried to modify the value of the PHP GLOBALS or _REQUEST variables. If any of these conditions are met, the request is blocked and a 403 error is returned to the client’s browser. Sources * Protéger Son Site Avec Un Fichier .htaccess * Protect Your WordPress Blog Using .htaccess

(Apache) compressing html, css, xml, js - iTony

Sat, 29 Mar 2008 18:29:17 GMT

(Apache) Parse HTML files as PHP - Abe

Wed, 30 Jan 2008 18:16:00 GMT

Add this to your .htaccess file in Apache: