zanis_online
Member
Posted 14 years ago #
Hello all,
I added a htaccess file to the wp-content directory (WPmu) but it actually blocks everything! Any ideas?
Order Allow,Deny
<Files ~ ".(css|jpg|png|gif|js)$">
Allow from all
</Files>
I get a 500 Internal Error from Apache - the blogs have been working fine
Why not use a robots.txt file?
robots will work.. but do you mean that you want to hide the wp-admin url from users excepting yourself of course? i see you used this... http://blogsecurity.net/wordpress/article-210607 (alright.. if you password protect the folder with apache) , but
try this - http://www.michiknows.com/2007/02/12/who-else-wants-to-hide-their-wordpress-admin-folder/ but I don't recommend renaming your admin user unless you know what you're getting yourself into there.
this in a .htaccess in the wp-admin folder too.
AuthUserFile /dev/null
AuthGroupFile /dev/null
AuthName "Access Control"
AuthType Basic
<LIMIT GET>
order deny,allow
deny from all
# whitelist home IP address
allow from 127.0.0.1
# whitelist work IP address
allow from 127.0.0.2
</LIMIT>
zanis_online
Member
Posted 14 years ago #
Hello all,
No - the htaccess file is within wp-content and wp-includes - because most of us add in third party plugins we run the risk on introducing bad code onto our server. The htaccess file is trying to reduce that risk by only allowing certain "harmless" files to be publicly called such as JS and CSS not .inc or .php
The current htaccess within the WPMu environment is blocking every file
Cheers
Marc
zanis_online
Member
Posted 14 years ago #
Hello all,
The answer I have found is watch how your MAC FTP client formats the file being uploaded! I found via a Windows box that the file contents had no line returns!
No idea what I need to change in my FTP on MAC but will work it out - something to do with line returns.