Active Web Hosting Logo

 

  1. Introduction
  2. Installation
    1. What You'll Need
    2. Where To Put WordPress
    3. Configuration
    4. Lock Down Your Writable Directories
    5. Uploading Your Installation
    6. Installing WordPress
    7. Finishing
    8. Plugin: Security
    9. Plugin: JetPack
  3. Security
    1. Prevention
    2. Detection
    3. Removal
  4. Updating Wordpress
  5. Removing WordPress
  6. Back Up Your Site
  7. Troubleshooting
  8. Resources

Lock Down Your Writable Directories

To ensure that no bots or other unauthorized visitors can access some of your important WordPress directories (which are writable so that WordPress can operate), you can restrict access so that the only your WordPress installation can use the files.

Create an _htaccess file with a plain text editor (note the underscore before htaccess) but do not put any text or anything in it. Save it as a blank file in your WordPress directory (same directory your wp-config.php file is located).

Create an uploads directory in your wp-content directory.

Create another _htaccess file, this time in the wp-content/uploads directory you just created. Edit the new file in a text editor by adding the code below:

<Files *.php>
deny from all
</Files>

Save the file and copy it to your wp-includes directory (there should now be an _htaccess file in both wp-content/uploads and wp-includes).

 

Home - Support - Management - About Us
... Active Web Hosting, 1445 American Pacific Dr. Ste 110-318, Henderson, NV 89074 ...
Phone 702-449-2337