Posted By

occam on 08/05/09


php wordpress apache security Hardening

Versions (?)

Who likes this?

1 person have marked this snippet as a favorite


Hardening Wordpress

 / Published in: Apache


In addition to the recommendations on the Wordpress Website.

Limit the amount of PHP files that a writable by Apache. The directory's and files that need to be writable, do not always need to be executed by PHP directly.

This makes it a bit harder for the attacker to upload and execute any PHP commands.

  1. <Directory "/example/htdocs/wp-content/uploads/">
  2. php_admin_flag engine off
  3. </Directory>
  4. <Directory "/example/htdocs/wp-content/themes/">
  5. <Files *php>
  6. Order allow,deny
  7. Deny from all
  8. </Files>
  9. </Directory>

Report this snippet  

You need to login to post a comment.