You are here: Home / Forum

Forum

 
You must be logged in to post Login Register


Register? | Lost Your Password?

Search Forums:


 






Wildcard Usage:
*    matches any number of characters
%    matches exactly one character

Home Forum Wordpress News and Updates Protect Your WordPress Site From a Malicious Attack

Protect Your WordPress Site From a Malicious Attack

Read original blog post
Print this Post
Page:   1  
No Tags
UserPost

9:22 pm
November 13, 2009


Josh

Admin

posts 52
Print this Post
1

Protecting your WordPress site from a malicious attack by using an .htaccess file in your upload folder.

/wp-content/uploads/

When uploading pictures to your WordPress site, your host may require you to set the permissions of the upload folder to 775 or even 777. VERY BAD!!!

A permission of 777 gives everyone read, write and execute privileges on that folder. This is very dangerous and can give hackers the ability to access your site and server via this wide open folder.

Minimize your exposure by adding an .htaccess file to the folder with the following code.


order deny,allow
deny from all

This will allow only certain files to be uploaded to this folder and deny all others, most importantly files that contain scripts.

Word of caution: No site is 100% safe. If a hacker wants into your site bad enough they probably can find a way. But by keeping up to date on software and plugin updates, will helps to reduce your risk of an attack.


Read original blog post
No Tags
Page:   1  
Topic RSS

About the Traffic Is Gold Forum

Most Users Ever Online: 18

Currently Online:
3 Guests

Currently Browsing this Topic:
1 Guest

Forum Stats:

Groups: 1
Forums: 13
Topics: 28
Posts: 28

Membership:

There are 27 Members

There is 1 Admin
There is 1 Moderator

Top Posters:

Maria – 1

Administrators: Josh (52 Posts)

Moderators: Lilly (1 Post)