{"id":878,"date":"2011-11-08T12:58:49","date_gmt":"2011-11-08T20:58:49","guid":{"rendered":"http:\/\/www.dognmonkey.com\/techs\/?p=878"},"modified":"2018-01-30T16:49:37","modified_gmt":"2018-01-31T00:49:37","slug":"protect-wp-config-php-file","status":"publish","type":"post","link":"https:\/\/www.dognmonkey.com\/techs\/protect-wp-config-php-file.html","title":{"rendered":"Protect WP-Config.php File"},"content":{"rendered":"

The wp-config.php file is the file that shows the blog database with username, password. If any hackers can read this file and get all the information, they can mess up the database if they want to. I found this on the website and hope it does work with our WordPress. Edit “.htaccess” of the blog root and resave – set the permission to 444.<\/em><\/p>\n

\n

\"permission<\/a>\u00a0\u00a0\u00a0\u00a0 \"accessing<\/a><\/p>\n<\/div>\n

\n

# BEGIN WordPress
\n<IfModule mod_rewrite.c>
\nRewriteEngine On
\nRewriteBase \/family\/
\nRewriteRule ^index.php$ – [L]
\nRewriteCond %{REQUEST_FILENAME} !-f
\nRewriteCond %{REQUEST_FILENAME} !-d
\nRewriteRule . \/family\/index.php [L]
\n<\/IfModule><\/p>\n

# END WordPress
\n# protect the htaccess file
\n<files .htaccess>
\norder allow,deny
\ndeny from all
\n<\/files>
\n# disable the server signature
\nServerSignature Off
\n# protect wpconfig.php
\n<files wp-config.php>
\norder allow,deny
\ndeny from all
\n<\/files>
\n<\/em><\/p><\/blockquote>\n