Return to Snippet

Revision: 28240
at July 5, 2010 16:26 by josephknight

Initial Code
<files wp-config.php>
order allow,deny
deny from all

Initial URL

Initial Description
The problem
As a WordPress user, you probably know how important the wp-config.php file is. This file contains all of the information required to access your precious database: username, password, server name and so on. Protecting the wp-config.php file is critical, so how about exploiting the power of Apache to this end?

Code explanation
.htaccess files are powerful and one of the best tools to prevent unwanted access to your files. In this code, we have simply created a rule that prevents any access to the wp-admin.php file, thus ensuring that no evil bots can access it.


    * 10 Easy Ways to Secure Your WordPress Blog

Initial Title
WordPress - .htaccess - protect config file

Initial Tags
php, html, wordpress, htaccess, security

Initial Language