Beanz/flatpress
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Protects the .htacces file from external access

Browse Source 
- Only the FlatPress admin and server admin should be able to access the .htacces file
This commit is contained in:
Frank Hochmuth 2023-12-14 20:45:54 +01:00 committed by GitHub
parent 1fd0f4b2bb
commit 0fc7258493
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
fp-plugins/prettyurls/plugin.prettyurls.php
View File

@ -628,11 +628,16 @@ if (class_exists('AdminPanelAction')) {
# Thanks again WP :) # Thanks again WP :)
AddType application/x-httpd-php .php .htm .html
Options -Indexes Options -Indexes
<IfModule mod_rewrite.c> <IfModule mod_rewrite.c>
RewriteEngine On RewriteEngine On
RewriteBase ' . $blogroot . ' RewriteBase ' . $blogroot . '
# Protects the .htacces file from external access, status code 403 "Forbidden" is output
RewriteRule ^\.htaccess$ - [F]
RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . ' . $blogroot . 'index.php [L] RewriteRule . ' . $blogroot . 'index.php [L]